Vulnerability-Lookup

URL	Tags
https://www.oracle.com/security-alerts/cpujan2022.html	x_refsource_MISC
https://security.netapp.com/advisory/ntap-2022012…	x_refsource_CONFIRM
https://www.debian.org/security/2022/dsa-5057	vendor-advisoryx_refsource_DEBIAN
https://www.debian.org/security/2022/dsa-5058	vendor-advisoryx_refsource_DEBIAN
https://security.gentoo.org/glsa/202209-05	vendor-advisoryx_refsource_GENTOO

Vendor	Product	Version
Oracle Corporation	Java SE JDK and JRE	Affected: Oracle Java SE:11.0.13 Affected: Oracle Java SE:17.0.1 Affected: Oracle GraalVM Enterprise Edition:20.3.4 Affected: Oracle GraalVM Enterprise Edition:21.3.0

CERTFR-2023-AVI-0051

Vulnerability from certfr_avis - Published: - Updated:

De multiples vulnérabilités ont été découvertes dans les produits Juniper. Certaines d'entre elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur, une exécution de code arbitraire à distance et un déni de service à distance.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
N/A	N/A	NorthStar Controller versions antérieures à 6.2.3
Juniper Networks	N/A	Contrail Cloud versions antérieures à 13.7.0
Juniper Networks	Junos OS Evolved	Junos OS Evolved versions antérieures à 19.2R3-EVO, 19.3R3-EVO, 19.4R3-EVO, 20.1R3-EVO, 20.2R2-EVO, 20.3R1-EVO, 20.4R2-EVO, 20.4R3-S3-EVO, 20.4R3-S4-EVO, 21.1R2-EVO, 21.2R1-EVO, 21.2R3-S4-EVO, 21.3R2-EVO, 21.3R3-EVO, 21.3R3-S1-EVO, 21.4R1-EVO, 21.4R2-EVO, 21.4R2-S1-EVO, 21.4R2-S2-EVO, 21.4R3-EVO, 22.1R1-EVO, 22.1R1-S2-EVO, 22.1R2-EVO, 22.1R3-EVO, 22.2R1-EVO, 22.2R1-S1-EVO, 22.2R2-EVO et 22.3R1-EVO
Juniper Networks	N/A	Juniper Networks Contrail Service Orchestration (CSO) versions antérieures à 6.3.0
Juniper Networks	Junos OS	Junos OS versions antérieures à 15.1R7-S12, 18.4R2-S7, 19.1R3-S2, 19.1R3-S9, 19.2R1-S9, 19.2R3, 19.2R3-S5, 19.2R3-S6, 19.3R3, 19.3R3-S6, 19.3R3-S7, 19.4R2-S7, 19.4R2-S8, 19.4R3, 19.4R3-S10, 19.4R3-S8, 19.4R3-S9, 20.1R2, 20.1R3-S4, 20.2R2, 20.2R3-S5, 20.2R3-S6, 20.2R3-S7, 20.3R1, 20.3R3-S4, 20.3R3-S5, 20.3R3-S6, 20.4R1, 20.4R3-S3, 20.4R3-S4, 20.4R3-S5, 21.1R1-S1, 21.1R2, 21.1R3, 21.1R3-S3, 21.1R3-S4, 21.1R3-S5, 21.2R1, 21.2R3, 21.2R3-S1, 21.2R3-S2, 21.2R3-S3, 21.3R2, 21.3R3, 21.3R3-S1, 21.3R3-S2, 21.3R3-S3, 21.4R2, 21.4R2-S1, 21.4R2-S2, 21.4R3, 21.4R3-S1, 21.4R3-S2, 22.1R1, 22.1R1-S2, 22.1R2, 22.1R2-S1, 22.1R2-S2, 22.1R3, 22.1R3-S1, 22.2R1, 22.2R1-S1, 22.2R1-S2, 22.2R2, 22.2R3, 22.3R1, 22.3R1-S1, 22.3R2 et 22.4R1
Juniper Networks	Junos Space	Junos Space versions antérieures à 22.3R1
Juniper Networks	N/A	Cloud Native Contrail Networking versions antérieures à R22.3

References

Title

Publication Time

FKIE_CVE-2022-21277

Vulnerability from fkie_nvd - Published: 2022-01-19 12:15 - Updated: 2026-05-27 15:16

Severity

5.3 (Medium) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Summary

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: ImageIO). Supported versions that are affected are Oracle Java SE: 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).

References

URL	Tags
secalert_us@oracle.com	https://security.gentoo.org/glsa/202209-05	Third Party Advisory
secalert_us@oracle.com	https://security.netapp.com/advisory/ntap-20220121-0007/	Third Party Advisory
secalert_us@oracle.com	https://www.debian.org/security/2022/dsa-5057	Third Party Advisory
secalert_us@oracle.com	https://www.debian.org/security/2022/dsa-5058	Third Party Advisory
secalert_us@oracle.com	https://www.oracle.com/security-alerts/cpujan2022.html	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	https://security.gentoo.org/glsa/202209-05	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://security.netapp.com/advisory/ntap-20220121-0007/	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://www.debian.org/security/2022/dsa-5057	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://www.debian.org/security/2022/dsa-5058	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://www.oracle.com/security-alerts/cpujan2022.html	Vendor Advisory

Impacted products

Vendor	Product	Version
oracle	graalvm	20.3.4
oracle	graalvm	21.3.0
oracle	jdk	11.0.13
oracle	jdk	17.0.1
oracle	jre	11.0.13
oracle	jre	17.0.1
debian	debian_linux	10.0
debian	debian_linux	11.0
netapp	7-mode_transition_tool	-
netapp	active_iq_unified_manager	-
netapp	active_iq_unified_manager	-
netapp	cloud_insights_acquisition_unit	-
netapp	cloud_secure_agent	-
netapp	e-series_santricity_os_controller	*
netapp	e-series_santricity_storage_manager	-
netapp	e-series_santricity_web_services	-
netapp	hci_management_node	-
netapp	oncommand_insight	-
netapp	oncommand_workflow_automation	-
netapp	santricity_storage_plugin	-
netapp	santricity_unified_manager	-
netapp	snapmanager	-
netapp	snapmanager	-
netapp	solidfire	-
oracle	openjdk	*
oracle	openjdk	*
oracle	openjdk	*
oracle	openjdk	17
oracle	openjdk	17.0.1

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:oracle:graalvm:20.3.4:*:*:*:enterprise:*:*:*",
              "matchCriteriaId": "9F300E13-1B40-4B35-ACA5-4D402CD41055",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:graalvm:21.3.0:*:*:*:enterprise:*:*:*",
              "matchCriteriaId": "B10E38A6-783C-45A2-98A1-12FA1EB3D3AA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:jdk:11.0.13:*:*:*:*:*:*:*",
              "matchCriteriaId": "A7F43D86-B696-41E4-A288-6A2D43A1774A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:jdk:17.0.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "3575C88F-05D3-49F6-A60B-7ED902E318F1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:jre:11.0.13:*:*:*:*:*:*:*",
              "matchCriteriaId": "90EC4B85-A88A-4EC3-9EA0-3A24874D5F87",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:jre:17.0.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "962026D1-1E50-480F-921C-C7EE32AA0107",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "07B237A9-69A3-4A9C-9DA0-4E06BD37AE73",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "FA6FEEC2-9F11-4643-8827-749718254FED",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:netapp:7-mode_transition_tool:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "7EF6650C-558D-45C8-AE7D-136EE70CB6D7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:vmware_vsphere:*:*",
              "matchCriteriaId": "3A756737-1CC4-42C2-A4DF-E1C893B4E2D5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:windows:*:*",
              "matchCriteriaId": "B55E8D50-99B4-47EC-86F9-699B67D473CE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:netapp:cloud_insights_acquisition_unit:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CCAA4004-9319-478C-9D55-0E8307F872F6",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:netapp:cloud_secure_agent:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "F0F202E8-97E6-4BBB-A0B6-4CA3F5803C08",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:netapp:e-series_santricity_os_controller:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "FF971916-C526-43A9-BD80-985BCC476569",
              "versionEndIncluding": "11.70.1",
              "versionStartIncluding": "11.0.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:netapp:e-series_santricity_storage_manager:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "0D9CC59D-6182-4B5E-96B5-226FCD343916",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:netapp:e-series_santricity_web_services:-:*:*:*:*:web_services_proxy:*:*",
              "matchCriteriaId": "1AEFF829-A8F2-4041-8DDF-E705DB3ADED2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:netapp:hci_management_node:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "A3C19813-E823-456A-B1CE-EC0684CE1953",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "F1BE6C1F-2565-4E97-92AA-16563E5660A5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:netapp:oncommand_workflow_automation:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "5735E553-9731-4AAC-BCFF-989377F817B3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:netapp:santricity_storage_plugin:-:*:*:*:*:vcenter:*:*",
              "matchCriteriaId": "82E94B87-065E-475F-815C-F49978CE22FC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:netapp:santricity_unified_manager:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "A372B177-F740-4655-865C-31777A6E140B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:netapp:snapmanager:-:*:*:*:*:oracle:*:*",
              "matchCriteriaId": "26A2B713-7D6D-420A-93A4-E0D983C983DF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:netapp:snapmanager:-:*:*:*:*:sap:*:*",
              "matchCriteriaId": "64DE38C8-94F1-4860-B045-F33928F676A8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:netapp:solidfire:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "A6E9EF0C-AFA8-4F7B-9FDC-1E0F7C26E737",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "6489B616-476E-46AB-8795-7EFDD9074899",
              "versionEndIncluding": "11.0.13",
              "versionStartIncluding": "11",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "F8A2B4B3-64EC-4930-9F31-202E4D19AF98",
              "versionEndIncluding": "13.0.9",
              "versionStartIncluding": "13",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "CF9DCD68-A054-456D-8A3C-15939F85DF90",
              "versionEndIncluding": "15.0.5",
              "versionStartIncluding": "15",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:openjdk:17:*:*:*:*:*:*:*",
              "matchCriteriaId": "4D0A929D-6054-4EFB-8BAD-58826D22D34B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:openjdk:17.0.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "DE7858DA-58DE-4920-B678-7800BD084EA1",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: ImageIO). Supported versions that are affected are Oracle Java SE: 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)."
    },
    {
      "lang": "es",
      "value": "Una vulnerabilidad en el producto Oracle Java SE, Oracle GraalVM Enterprise Edition de Oracle Java SE (componente: ImageIO). Las versiones compatibles que est\u00e1n afectadas son Oracle Java SE: 11.0.13, 17.01; Oracle GraalVM Enterprise Edition: 20.3.4 y 21.3.0. Una vulnerabilidad explotable f\u00e1cilmente, permite a un atacante no autenticado con acceso a la red por medio de m\u00faltiples protocolos comprometer a Oracle Java SE, Oracle GraalVM Enterprise Edition. Los ataques con \u00e9xito de esta vulnerabilidad pueden resultar en una capacidad no autorizada de causar una negaci\u00f3n parcial de servicio (DOS parcial) de Oracle Java SE, Oracle GraalVM Enterprise Edition. Nota: Esta vulnerabilidad es aplicada a las implantaciones de Java, normalmente en clientes que ejecutan aplicaciones Java Web Start con sandbox o applets Java con sandbox, que cargan y ejecutan c\u00f3digo que no es confiable (por ejemplo, c\u00f3digo que viene de Internet) y dependen de la sandbox de Java para la seguridad. Esta vulnerabilidad tambi\u00e9n puede ser explotada al usar APIs en el Componente especificado, por ejemplo, mediante un servicio web que suministra datos a las APIs. CVSS 3.1, Puntuaci\u00f3n base 5.3 (impactos en la Disponibilidad). Vector CVSS: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)"
    }
  ],
  "id": "CVE-2022-21277",
  "lastModified": "2026-05-27T15:16:18.393",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 5.0,
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ],
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "LOW",
          "baseScore": 5.3,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
          "version": "3.1"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 1.4,
        "source": "secalert_us@oracle.com",
        "type": "Secondary"
      }
    ]
  },
  "published": "2022-01-19T12:15:11.697",
  "references": [
    {
      "source": "secalert_us@oracle.com",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://security.gentoo.org/glsa/202209-05"
    },
    {
      "source": "secalert_us@oracle.com",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://security.netapp.com/advisory/ntap-20220121-0007/"
    },
    {
      "source": "secalert_us@oracle.com",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://www.debian.org/security/2022/dsa-5057"
    },
    {
      "source": "secalert_us@oracle.com",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://www.debian.org/security/2022/dsa-5058"
    },
    {
      "source": "secalert_us@oracle.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://www.oracle.com/security-alerts/cpujan2022.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://security.gentoo.org/glsa/202209-05"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://security.netapp.com/advisory/ntap-20220121-0007/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://www.debian.org/security/2022/dsa-5057"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://www.debian.org/security/2022/dsa-5058"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://www.oracle.com/security-alerts/cpujan2022.html"
    }
  ],
  "sourceIdentifier": "secalert_us@oracle.com",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-noinfo"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    },
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-400"
        }
      ],
      "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
      "type": "Secondary"
    }
  ]
}

GHSA-FH88-RXJ8-F46Q

Vulnerability from github – Published: 2022-01-20 00:01 – Updated: 2024-02-16 21:31

Details

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: ImageIO). Supported versions that are affected are Oracle Java SE: 11.0.13, 17.01; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).

Severity

5.3 (Medium)


                  
                    CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2022-21277"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-400"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2022-01-19T12:15:00Z",
    "severity": "MODERATE"
  },
  "details": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: ImageIO). Supported versions that are affected are Oracle Java SE: 11.0.13, 17.01; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
  "id": "GHSA-fh88-rxj8-f46q",
  "modified": "2024-02-16T21:31:30Z",
  "published": "2022-01-20T00:01:30Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-21277"
    },
    {
      "type": "WEB",
      "url": "https://security.gentoo.org/glsa/202209-05"
    },
    {
      "type": "WEB",
      "url": "https://security.netapp.com/advisory/ntap-20220121-0007"
    },
    {
      "type": "WEB",
      "url": "https://www.debian.org/security/2022/dsa-5057"
    },
    {
      "type": "WEB",
      "url": "https://www.debian.org/security/2022/dsa-5058"
    },
    {
      "type": "WEB",
      "url": "https://www.oracle.com/security-alerts/cpujan2022.html"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
      "type": "CVSS_V3"
    }
  ]
}

GSD-2022-21277

Vulnerability from gsd - Updated: 2023-12-13 01:19

Details

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: ImageIO). Supported versions that are affected are Oracle Java SE: 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).

Aliases

CVE-2022-21277

Aliases

CVE-2022-21277

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2022-21277",
    "description": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: ImageIO). Supported versions that are affected are Oracle Java SE: 11.0.13, 17.01; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
    "id": "GSD-2022-21277",
    "references": [
      "https://www.suse.com/security/cve/CVE-2022-21277.html",
      "https://www.debian.org/security/2022/dsa-5057",
      "https://www.debian.org/security/2022/dsa-5058",
      "https://access.redhat.com/errata/RHSA-2022:0233",
      "https://access.redhat.com/errata/RHSA-2022:0229",
      "https://access.redhat.com/errata/RHSA-2022:0228",
      "https://access.redhat.com/errata/RHSA-2022:0211",
      "https://access.redhat.com/errata/RHSA-2022:0209",
      "https://access.redhat.com/errata/RHSA-2022:0204",
      "https://access.redhat.com/errata/RHSA-2022:0185",
      "https://access.redhat.com/errata/RHSA-2022:0166",
      "https://access.redhat.com/errata/RHSA-2022:0165",
      "https://access.redhat.com/errata/RHSA-2022:0161",
      "https://ubuntu.com/security/CVE-2022-21277",
      "https://linux.oracle.com/cve/CVE-2022-21277.html"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2022-21277"
      ],
      "details": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: ImageIO). Supported versions that are affected are Oracle Java SE: 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
      "id": "GSD-2022-21277",
      "modified": "2023-12-13T01:19:14.905491Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "secalert_us@oracle.com",
        "ID": "CVE-2022-21277",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "Java SE JDK and JRE",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "=",
                          "version_value": "Oracle Java SE:11.0.13"
                        },
                        {
                          "version_affected": "=",
                          "version_value": "Oracle Java SE:17.0.1"
                        },
                        {
                          "version_affected": "=",
                          "version_value": "Oracle GraalVM Enterprise Edition:20.3.4"
                        },
                        {
                          "version_affected": "=",
                          "version_value": "Oracle GraalVM Enterprise Edition:21.3.0"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "Oracle Corporation"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: ImageIO). Supported versions that are affected are Oracle Java SE: 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)."
          }
        ]
      },
      "impact": {
        "cvss": [
          {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition.  Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition."
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://www.oracle.com/security-alerts/cpujan2022.html",
            "refsource": "MISC",
            "url": "https://www.oracle.com/security-alerts/cpujan2022.html"
          },
          {
            "name": "https://security.netapp.com/advisory/ntap-20220121-0007/",
            "refsource": "MISC",
            "url": "https://security.netapp.com/advisory/ntap-20220121-0007/"
          },
          {
            "name": "https://www.debian.org/security/2022/dsa-5057",
            "refsource": "MISC",
            "url": "https://www.debian.org/security/2022/dsa-5057"
          },
          {
            "name": "https://www.debian.org/security/2022/dsa-5058",
            "refsource": "MISC",
            "url": "https://www.debian.org/security/2022/dsa-5058"
          },
          {
            "name": "https://security.gentoo.org/glsa/202209-05",
            "refsource": "MISC",
            "url": "https://security.gentoo.org/glsa/202209-05"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "cve": {
        "configurations": [
          {
            "nodes": [
              {
                "cpeMatch": [
                  {
                    "criteria": "cpe:2.3:a:oracle:graalvm:20.3.4:*:*:*:enterprise:*:*:*",
                    "matchCriteriaId": "9F300E13-1B40-4B35-ACA5-4D402CD41055",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:oracle:graalvm:21.3.0:*:*:*:enterprise:*:*:*",
                    "matchCriteriaId": "B10E38A6-783C-45A2-98A1-12FA1EB3D3AA",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:oracle:jdk:11.0.13:*:*:*:*:*:*:*",
                    "matchCriteriaId": "A7F43D86-B696-41E4-A288-6A2D43A1774A",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:oracle:jdk:17.0.1:*:*:*:*:*:*:*",
                    "matchCriteriaId": "3575C88F-05D3-49F6-A60B-7ED902E318F1",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:oracle:jre:11.0.13:*:*:*:*:*:*:*",
                    "matchCriteriaId": "90EC4B85-A88A-4EC3-9EA0-3A24874D5F87",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:oracle:jre:17.0.1:*:*:*:*:*:*:*",
                    "matchCriteriaId": "962026D1-1E50-480F-921C-C7EE32AA0107",
                    "vulnerable": true
                  }
                ],
                "negate": false,
                "operator": "OR"
              }
            ]
          },
          {
            "nodes": [
              {
                "cpeMatch": [
                  {
                    "criteria": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*",
                    "matchCriteriaId": "07B237A9-69A3-4A9C-9DA0-4E06BD37AE73",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*",
                    "matchCriteriaId": "FA6FEEC2-9F11-4643-8827-749718254FED",
                    "vulnerable": true
                  }
                ],
                "negate": false,
                "operator": "OR"
              }
            ]
          },
          {
            "nodes": [
              {
                "cpeMatch": [
                  {
                    "criteria": "cpe:2.3:a:netapp:7-mode_transition_tool:-:*:*:*:*:*:*:*",
                    "matchCriteriaId": "7EF6650C-558D-45C8-AE7D-136EE70CB6D7",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:vmware_vsphere:*:*",
                    "matchCriteriaId": "3A756737-1CC4-42C2-A4DF-E1C893B4E2D5",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:windows:*:*",
                    "matchCriteriaId": "B55E8D50-99B4-47EC-86F9-699B67D473CE",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:netapp:cloud_insights_acquisition_unit:-:*:*:*:*:*:*:*",
                    "matchCriteriaId": "CCAA4004-9319-478C-9D55-0E8307F872F6",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:netapp:cloud_secure_agent:-:*:*:*:*:*:*:*",
                    "matchCriteriaId": "F0F202E8-97E6-4BBB-A0B6-4CA3F5803C08",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:netapp:e-series_santricity_os_controller:*:*:*:*:*:*:*:*",
                    "matchCriteriaId": "FF971916-C526-43A9-BD80-985BCC476569",
                    "versionEndIncluding": "11.70.1",
                    "versionStartIncluding": "11.0.0",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:netapp:e-series_santricity_storage_manager:-:*:*:*:*:*:*:*",
                    "matchCriteriaId": "0D9CC59D-6182-4B5E-96B5-226FCD343916",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:netapp:e-series_santricity_web_services:-:*:*:*:*:web_services_proxy:*:*",
                    "matchCriteriaId": "1AEFF829-A8F2-4041-8DDF-E705DB3ADED2",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:netapp:hci_management_node:-:*:*:*:*:*:*:*",
                    "matchCriteriaId": "A3C19813-E823-456A-B1CE-EC0684CE1953",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:*",
                    "matchCriteriaId": "F1BE6C1F-2565-4E97-92AA-16563E5660A5",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:netapp:oncommand_workflow_automation:-:*:*:*:*:*:*:*",
                    "matchCriteriaId": "5735E553-9731-4AAC-BCFF-989377F817B3",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:netapp:santricity_storage_plugin:-:*:*:*:*:vcenter:*:*",
                    "matchCriteriaId": "82E94B87-065E-475F-815C-F49978CE22FC",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:netapp:santricity_unified_manager:-:*:*:*:*:*:*:*",
                    "matchCriteriaId": "A372B177-F740-4655-865C-31777A6E140B",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:netapp:snapmanager:-:*:*:*:*:oracle:*:*",
                    "matchCriteriaId": "26A2B713-7D6D-420A-93A4-E0D983C983DF",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:netapp:snapmanager:-:*:*:*:*:sap:*:*",
                    "matchCriteriaId": "64DE38C8-94F1-4860-B045-F33928F676A8",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:netapp:solidfire:-:*:*:*:*:*:*:*",
                    "matchCriteriaId": "A6E9EF0C-AFA8-4F7B-9FDC-1E0F7C26E737",
                    "vulnerable": true
                  }
                ],
                "negate": false,
                "operator": "OR"
              }
            ]
          },
          {
            "nodes": [
              {
                "cpeMatch": [
                  {
                    "criteria": "cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*",
                    "matchCriteriaId": "6489B616-476E-46AB-8795-7EFDD9074899",
                    "versionEndIncluding": "11.0.13",
                    "versionStartIncluding": "11",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*",
                    "matchCriteriaId": "F8A2B4B3-64EC-4930-9F31-202E4D19AF98",
                    "versionEndIncluding": "13.0.9",
                    "versionStartIncluding": "13",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*",
                    "matchCriteriaId": "CF9DCD68-A054-456D-8A3C-15939F85DF90",
                    "versionEndIncluding": "15.0.5",
                    "versionStartIncluding": "15",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:oracle:openjdk:17:*:*:*:*:*:*:*",
                    "matchCriteriaId": "4D0A929D-6054-4EFB-8BAD-58826D22D34B",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:oracle:openjdk:17.0.1:*:*:*:*:*:*:*",
                    "matchCriteriaId": "DE7858DA-58DE-4920-B678-7800BD084EA1",
                    "vulnerable": true
                  }
                ],
                "negate": false,
                "operator": "OR"
              }
            ]
          }
        ],
        "descriptions": [
          {
            "lang": "en",
            "value": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: ImageIO). Supported versions that are affected are Oracle Java SE: 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)."
          },
          {
            "lang": "es",
            "value": "Una vulnerabilidad en el producto Oracle Java SE, Oracle GraalVM Enterprise Edition de Oracle Java SE (componente: ImageIO). Las versiones compatibles que est\u00e1n afectadas son Oracle Java SE: 11.0.13, 17.01; Oracle GraalVM Enterprise Edition: 20.3.4 y 21.3.0. Una vulnerabilidad explotable f\u00e1cilmente, permite a un atacante no autenticado con acceso a la red por medio de m\u00faltiples protocolos comprometer a Oracle Java SE, Oracle GraalVM Enterprise Edition. Los ataques con \u00e9xito de esta vulnerabilidad pueden resultar en una capacidad no autorizada de causar una negaci\u00f3n parcial de servicio (DOS parcial) de Oracle Java SE, Oracle GraalVM Enterprise Edition. Nota: Esta vulnerabilidad es aplicada a las implantaciones de Java, normalmente en clientes que ejecutan aplicaciones Java Web Start con sandbox o applets Java con sandbox, que cargan y ejecutan c\u00f3digo que no es confiable (por ejemplo, c\u00f3digo que viene de Internet) y dependen de la sandbox de Java para la seguridad. Esta vulnerabilidad tambi\u00e9n puede ser explotada al usar APIs en el Componente especificado, por ejemplo, mediante un servicio web que suministra datos a las APIs. CVSS 3.1, Puntuaci\u00f3n base 5.3 (impactos en la Disponibilidad). Vector CVSS: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)"
          }
        ],
        "id": "CVE-2022-21277",
        "lastModified": "2024-02-16T19:22:00.267",
        "metrics": {
          "cvssMetricV2": [
            {
              "acInsufInfo": false,
              "baseSeverity": "MEDIUM",
              "cvssData": {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "availabilityImpact": "PARTIAL",
                "baseScore": 5.0,
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
                "version": "2.0"
              },
              "exploitabilityScore": 10.0,
              "impactScore": 2.9,
              "obtainAllPrivilege": false,
              "obtainOtherPrivilege": false,
              "obtainUserPrivilege": false,
              "source": "nvd@nist.gov",
              "type": "Primary",
              "userInteractionRequired": false
            }
          ],
          "cvssMetricV31": [
            {
              "cvssData": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "LOW",
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
                "version": "3.1"
              },
              "exploitabilityScore": 3.9,
              "impactScore": 1.4,
              "source": "secalert_us@oracle.com",
              "type": "Primary"
            }
          ]
        },
        "published": "2022-01-19T12:15:11.697",
        "references": [
          {
            "source": "secalert_us@oracle.com",
            "tags": [
              "Third Party Advisory"
            ],
            "url": "https://security.gentoo.org/glsa/202209-05"
          },
          {
            "source": "secalert_us@oracle.com",
            "tags": [
              "Third Party Advisory"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20220121-0007/"
          },
          {
            "source": "secalert_us@oracle.com",
            "tags": [
              "Third Party Advisory"
            ],
            "url": "https://www.debian.org/security/2022/dsa-5057"
          },
          {
            "source": "secalert_us@oracle.com",
            "tags": [
              "Third Party Advisory"
            ],
            "url": "https://www.debian.org/security/2022/dsa-5058"
          },
          {
            "source": "secalert_us@oracle.com",
            "tags": [
              "Vendor Advisory"
            ],
            "url": "https://www.oracle.com/security-alerts/cpujan2022.html"
          }
        ],
        "sourceIdentifier": "secalert_us@oracle.com",
        "vulnStatus": "Analyzed",
        "weaknesses": [
          {
            "description": [
              {
                "lang": "en",
                "value": "NVD-CWE-noinfo"
              }
            ],
            "source": "nvd@nist.gov",
            "type": "Primary"
          }
        ]
      }
    }
  }
}

OPENSUSE-SU-2022:0816-1

Vulnerability from csaf_opensuse - Published: 2022-03-14 09:22 - Updated: 2022-03-14 09:22

Summary

Security update for java-11-openjdk

Severity

Moderate

Notes

Title of the patch: Security update for java-11-openjdk

Description of the patch: This update for java-11-openjdk fixes the following issues: - CVE-2022-21248: Fixed incomplete deserialization class filtering in ObjectInputStream. (bnc#1194926) - CVE-2022-21277: Fixed incorrect reading of TIFF files in TIFFNullDecompressor. (bnc#1194930) - CVE-2022-21282: Fixed Insufficient URI checks in the XSLT TransformerImpl. (bnc#1194933) - CVE-2022-21283: Fixed unexpected exception thrown in regex Pattern. (bnc#1194937) - CVE-2022-21291: Fixed Incorrect marking of writeable fields. (bnc#1194925) - CVE-2022-21293: Fixed Incomplete checks of StringBuffer and StringBuilder during deserialization. (bnc#1194935) - CVE-2022-21294: Fixed Incorrect IdentityHashMap size checks during deserialization. (bnc#1194934) - CVE-2022-21296: Fixed Incorrect access checks in XMLEntityManager. (bnc#1194932) - CVE-2022-21299: Fixed Infinite loop related to incorrect handling of newlines in XMLEntityScanner. (bnc#1194931) - CVE-2022-21305: Fixed Array indexing issues in LIRGenerator. (bnc#1194939) - CVE-2022-21340: Fixed Excessive resource use when reading JAR manifest attributes. (bnc#1194940) - CVE-2022-21341: Fixed OpenJDK: Insufficient checks when deserializing exceptions in ObjectInputStream. (bnc#1194941) - CVE-2022-21360: Fixed Excessive memory allocation in BMPImageReader. (bnc#1194929) - CVE-2022-21365: Fixed Integer overflow in BMPImageReader. (bnc#1194928) - CVE-2022-21366: Fixed Excessive memory allocation in TIFF*Decompressor. (bnc#1194927)

Patchnames: openSUSE-SLE-15.3-2022-816

Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).

CVE-2022-21248

3.7 (Low)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

Affected products

Recommended 29 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2022-21277

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 29 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21282

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Affected products

Recommended 29 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21283

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 29 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21291

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Affected products

Recommended 29 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21293

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 29 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21294

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 29 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21296

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Affected products

Recommended 29 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21299

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 29 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21305

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Affected products

Recommended 29 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21340

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 29 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21341

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 29 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21360

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 29 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21365

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 29 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21366

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 29 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64	—	Vendor Fix

Threats

Impact moderate

References

79 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/o…	self
https://lists.opensuse.org/archives/list/security…	self
https://lists.opensuse.org/archives/list/security…	self
https://bugzilla.suse.com/1194925	self
https://bugzilla.suse.com/1194926	self
https://bugzilla.suse.com/1194927	self
https://bugzilla.suse.com/1194928	self
https://bugzilla.suse.com/1194929	self
https://bugzilla.suse.com/1194930	self
https://bugzilla.suse.com/1194931	self
https://bugzilla.suse.com/1194932	self
https://bugzilla.suse.com/1194933	self
https://bugzilla.suse.com/1194934	self
https://bugzilla.suse.com/1194935	self
https://bugzilla.suse.com/1194937	self
https://bugzilla.suse.com/1194939	self
https://bugzilla.suse.com/1194940	self
https://bugzilla.suse.com/1194941	self
https://www.suse.com/security/cve/CVE-2022-21248/	self
https://www.suse.com/security/cve/CVE-2022-21277/	self
https://www.suse.com/security/cve/CVE-2022-21282/	self
https://www.suse.com/security/cve/CVE-2022-21283/	self
https://www.suse.com/security/cve/CVE-2022-21291/	self
https://www.suse.com/security/cve/CVE-2022-21293/	self
https://www.suse.com/security/cve/CVE-2022-21294/	self
https://www.suse.com/security/cve/CVE-2022-21296/	self
https://www.suse.com/security/cve/CVE-2022-21299/	self
https://www.suse.com/security/cve/CVE-2022-21305/	self
https://www.suse.com/security/cve/CVE-2022-21340/	self
https://www.suse.com/security/cve/CVE-2022-21341/	self
https://www.suse.com/security/cve/CVE-2022-21360/	self
https://www.suse.com/security/cve/CVE-2022-21365/	self
https://www.suse.com/security/cve/CVE-2022-21366/	self
https://www.suse.com/security/cve/CVE-2022-21248	external
https://bugzilla.suse.com/1194926	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21277	external
https://bugzilla.suse.com/1194930	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21282	external
https://bugzilla.suse.com/1194933	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21283	external
https://bugzilla.suse.com/1194937	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21291	external
https://bugzilla.suse.com/1194925	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21293	external
https://bugzilla.suse.com/1194935	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21294	external
https://bugzilla.suse.com/1194934	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21296	external
https://bugzilla.suse.com/1194932	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21299	external
https://bugzilla.suse.com/1194931	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21305	external
https://bugzilla.suse.com/1194939	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21340	external
https://bugzilla.suse.com/1194940	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21341	external
https://bugzilla.suse.com/1194941	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21360	external
https://bugzilla.suse.com/1194929	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21365	external
https://bugzilla.suse.com/1194928	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21366	external
https://bugzilla.suse.com/1194927	external
https://bugzilla.suse.com/1197126	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for java-11-openjdk",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for java-11-openjdk fixes the following issues:\n\n- CVE-2022-21248: Fixed incomplete deserialization class filtering in ObjectInputStream. (bnc#1194926)\n- CVE-2022-21277: Fixed incorrect reading of TIFF files in TIFFNullDecompressor. (bnc#1194930)\n- CVE-2022-21282: Fixed Insufficient URI checks in the XSLT TransformerImpl. (bnc#1194933)\n- CVE-2022-21283: Fixed unexpected exception thrown in regex Pattern. (bnc#1194937)\n- CVE-2022-21291: Fixed Incorrect marking of writeable fields. (bnc#1194925)\n- CVE-2022-21293: Fixed Incomplete checks of StringBuffer and StringBuilder during deserialization. (bnc#1194935)\n- CVE-2022-21294: Fixed Incorrect IdentityHashMap size checks during deserialization. (bnc#1194934)\n- CVE-2022-21296: Fixed Incorrect access checks in XMLEntityManager. (bnc#1194932)\n- CVE-2022-21299: Fixed Infinite loop related to incorrect handling of newlines in XMLEntityScanner. (bnc#1194931)\n- CVE-2022-21305: Fixed Array indexing issues in LIRGenerator. (bnc#1194939)\n- CVE-2022-21340: Fixed Excessive resource use when reading JAR manifest attributes. (bnc#1194940)\n- CVE-2022-21341: Fixed OpenJDK: Insufficient checks when deserializing exceptions in ObjectInputStream. (bnc#1194941)\n- CVE-2022-21360: Fixed Excessive memory allocation in BMPImageReader. (bnc#1194929)\n- CVE-2022-21365: Fixed Integer overflow in BMPImageReader. (bnc#1194928)\n- CVE-2022-21366: Fixed Excessive memory allocation in TIFF*Decompressor. (bnc#1194927)\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "openSUSE-SLE-15.3-2022-816",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2022_0816-1.json"
      },
      {
        "category": "self",
        "summary": "URL for openSUSE-SU-2022:0816-1",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/U6OQKLWM3DMDDCKHLY4KFE6NXSK5MSXV/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for openSUSE-SU-2022:0816-1",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/U6OQKLWM3DMDDCKHLY4KFE6NXSK5MSXV/"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1194925",
        "url": "https://bugzilla.suse.com/1194925"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1194926",
        "url": "https://bugzilla.suse.com/1194926"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1194927",
        "url": "https://bugzilla.suse.com/1194927"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1194928",
        "url": "https://bugzilla.suse.com/1194928"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1194929",
        "url": "https://bugzilla.suse.com/1194929"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1194930",
        "url": "https://bugzilla.suse.com/1194930"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1194931",
        "url": "https://bugzilla.suse.com/1194931"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1194932",
        "url": "https://bugzilla.suse.com/1194932"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1194933",
        "url": "https://bugzilla.suse.com/1194933"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1194934",
        "url": "https://bugzilla.suse.com/1194934"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1194935",
        "url": "https://bugzilla.suse.com/1194935"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1194937",
        "url": "https://bugzilla.suse.com/1194937"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1194939",
        "url": "https://bugzilla.suse.com/1194939"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1194940",
        "url": "https://bugzilla.suse.com/1194940"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1194941",
        "url": "https://bugzilla.suse.com/1194941"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21248 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21248/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21277 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21277/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21282 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21282/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21283 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21283/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21291 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21291/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21293 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21293/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21294 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21294/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21296 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21296/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21299 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21299/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21305 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21305/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21340 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21340/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21341 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21341/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21360 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21360/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21365 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21365/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21366 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21366/"
      }
    ],
    "title": "Security update for java-11-openjdk",
    "tracking": {
      "current_release_date": "2022-03-14T09:22:27Z",
      "generator": {
        "date": "2022-03-14T09:22:27Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "openSUSE-SU-2022:0816-1",
      "initial_release_date": "2022-03-14T09:22:27Z",
      "revision_history": [
        {
          "date": "2022-03-14T09:22:27Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "java-11-openjdk-11.0.14.0-3.74.2.aarch64",
                "product": {
                  "name": "java-11-openjdk-11.0.14.0-3.74.2.aarch64",
                  "product_id": "java-11-openjdk-11.0.14.0-3.74.2.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64",
                "product": {
                  "name": "java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64",
                  "product_id": "java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64",
                "product": {
                  "name": "java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64",
                  "product_id": "java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64",
                "product": {
                  "name": "java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64",
                  "product_id": "java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64",
                "product": {
                  "name": "java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64",
                  "product_id": "java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64",
                "product": {
                  "name": "java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64",
                  "product_id": "java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "java-11-openjdk-src-11.0.14.0-3.74.2.aarch64",
                "product": {
                  "name": "java-11-openjdk-src-11.0.14.0-3.74.2.aarch64",
                  "product_id": "java-11-openjdk-src-11.0.14.0-3.74.2.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch",
                "product": {
                  "name": "java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch",
                  "product_id": "java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch"
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "java-11-openjdk-11.0.14.0-3.74.2.ppc64le",
                "product": {
                  "name": "java-11-openjdk-11.0.14.0-3.74.2.ppc64le",
                  "product_id": "java-11-openjdk-11.0.14.0-3.74.2.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le",
                "product": {
                  "name": "java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le",
                  "product_id": "java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le",
                "product": {
                  "name": "java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le",
                  "product_id": "java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le",
                "product": {
                  "name": "java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le",
                  "product_id": "java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le",
                "product": {
                  "name": "java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le",
                  "product_id": "java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le",
                "product": {
                  "name": "java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le",
                  "product_id": "java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le",
                "product": {
                  "name": "java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le",
                  "product_id": "java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "java-11-openjdk-11.0.14.0-3.74.2.s390x",
                "product": {
                  "name": "java-11-openjdk-11.0.14.0-3.74.2.s390x",
                  "product_id": "java-11-openjdk-11.0.14.0-3.74.2.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x",
                "product": {
                  "name": "java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x",
                  "product_id": "java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "java-11-openjdk-demo-11.0.14.0-3.74.2.s390x",
                "product": {
                  "name": "java-11-openjdk-demo-11.0.14.0-3.74.2.s390x",
                  "product_id": "java-11-openjdk-demo-11.0.14.0-3.74.2.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "java-11-openjdk-devel-11.0.14.0-3.74.2.s390x",
                "product": {
                  "name": "java-11-openjdk-devel-11.0.14.0-3.74.2.s390x",
                  "product_id": "java-11-openjdk-devel-11.0.14.0-3.74.2.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "java-11-openjdk-headless-11.0.14.0-3.74.2.s390x",
                "product": {
                  "name": "java-11-openjdk-headless-11.0.14.0-3.74.2.s390x",
                  "product_id": "java-11-openjdk-headless-11.0.14.0-3.74.2.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x",
                "product": {
                  "name": "java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x",
                  "product_id": "java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "java-11-openjdk-src-11.0.14.0-3.74.2.s390x",
                "product": {
                  "name": "java-11-openjdk-src-11.0.14.0-3.74.2.s390x",
                  "product_id": "java-11-openjdk-src-11.0.14.0-3.74.2.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "java-11-openjdk-11.0.14.0-3.74.2.x86_64",
                "product": {
                  "name": "java-11-openjdk-11.0.14.0-3.74.2.x86_64",
                  "product_id": "java-11-openjdk-11.0.14.0-3.74.2.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64",
                "product": {
                  "name": "java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64",
                  "product_id": "java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64",
                "product": {
                  "name": "java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64",
                  "product_id": "java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64",
                "product": {
                  "name": "java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64",
                  "product_id": "java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64",
                "product": {
                  "name": "java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64",
                  "product_id": "java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64",
                "product": {
                  "name": "java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64",
                  "product_id": "java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "java-11-openjdk-src-11.0.14.0-3.74.2.x86_64",
                "product": {
                  "name": "java-11-openjdk-src-11.0.14.0-3.74.2.x86_64",
                  "product_id": "java-11-openjdk-src-11.0.14.0-3.74.2.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "openSUSE Leap 15.3",
                "product": {
                  "name": "openSUSE Leap 15.3",
                  "product_id": "openSUSE Leap 15.3",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:leap:15.3"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-11.0.14.0-3.74.2.aarch64 as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64"
        },
        "product_reference": "java-11-openjdk-11.0.14.0-3.74.2.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-11.0.14.0-3.74.2.ppc64le as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le"
        },
        "product_reference": "java-11-openjdk-11.0.14.0-3.74.2.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-11.0.14.0-3.74.2.s390x as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x"
        },
        "product_reference": "java-11-openjdk-11.0.14.0-3.74.2.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-11.0.14.0-3.74.2.x86_64 as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64"
        },
        "product_reference": "java-11-openjdk-11.0.14.0-3.74.2.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64 as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64"
        },
        "product_reference": "java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le"
        },
        "product_reference": "java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x"
        },
        "product_reference": "java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64 as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64"
        },
        "product_reference": "java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64 as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64"
        },
        "product_reference": "java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le"
        },
        "product_reference": "java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-demo-11.0.14.0-3.74.2.s390x as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x"
        },
        "product_reference": "java-11-openjdk-demo-11.0.14.0-3.74.2.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64 as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64"
        },
        "product_reference": "java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64 as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64"
        },
        "product_reference": "java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le"
        },
        "product_reference": "java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-devel-11.0.14.0-3.74.2.s390x as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x"
        },
        "product_reference": "java-11-openjdk-devel-11.0.14.0-3.74.2.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64 as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64"
        },
        "product_reference": "java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64 as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64"
        },
        "product_reference": "java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le"
        },
        "product_reference": "java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-headless-11.0.14.0-3.74.2.s390x as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x"
        },
        "product_reference": "java-11-openjdk-headless-11.0.14.0-3.74.2.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64 as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64"
        },
        "product_reference": "java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch"
        },
        "product_reference": "java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64 as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64"
        },
        "product_reference": "java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le"
        },
        "product_reference": "java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x"
        },
        "product_reference": "java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64 as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64"
        },
        "product_reference": "java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-src-11.0.14.0-3.74.2.aarch64 as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64"
        },
        "product_reference": "java-11-openjdk-src-11.0.14.0-3.74.2.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le"
        },
        "product_reference": "java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-src-11.0.14.0-3.74.2.s390x as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x"
        },
        "product_reference": "java-11-openjdk-src-11.0.14.0-3.74.2.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-src-11.0.14.0-3.74.2.x86_64 as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64"
        },
        "product_reference": "java-11-openjdk-src-11.0.14.0-3.74.2.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2022-21248",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21248"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Serialization). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 3.7 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21248",
          "url": "https://www.suse.com/security/cve/CVE-2022-21248"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194926 for CVE-2022-21248",
          "url": "https://bugzilla.suse.com/1194926"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21248",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.7,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-03-14T09:22:27Z",
          "details": "low"
        }
      ],
      "title": "CVE-2022-21248"
    },
    {
      "cve": "CVE-2022-21277",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21277"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: ImageIO). Supported versions that are affected are Oracle Java SE: 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21277",
          "url": "https://www.suse.com/security/cve/CVE-2022-21277"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194930 for CVE-2022-21277",
          "url": "https://bugzilla.suse.com/1194930"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21277",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-03-14T09:22:27Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21277"
    },
    {
      "cve": "CVE-2022-21282",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21282"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JAXP). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21282",
          "url": "https://www.suse.com/security/cve/CVE-2022-21282"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194933 for CVE-2022-21282",
          "url": "https://bugzilla.suse.com/1194933"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21282",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-03-14T09:22:27Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21282"
    },
    {
      "cve": "CVE-2022-21283",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21283"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21283",
          "url": "https://www.suse.com/security/cve/CVE-2022-21283"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194937 for CVE-2022-21283",
          "url": "https://bugzilla.suse.com/1194937"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21283",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-03-14T09:22:27Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21283"
    },
    {
      "cve": "CVE-2022-21291",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21291"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21291",
          "url": "https://www.suse.com/security/cve/CVE-2022-21291"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194925 for CVE-2022-21291",
          "url": "https://bugzilla.suse.com/1194925"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21291",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-03-14T09:22:27Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21291"
    },
    {
      "cve": "CVE-2022-21293",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21293"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21293",
          "url": "https://www.suse.com/security/cve/CVE-2022-21293"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194935 for CVE-2022-21293",
          "url": "https://bugzilla.suse.com/1194935"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21293",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-03-14T09:22:27Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21293"
    },
    {
      "cve": "CVE-2022-21294",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21294"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21294",
          "url": "https://www.suse.com/security/cve/CVE-2022-21294"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194934 for CVE-2022-21294",
          "url": "https://bugzilla.suse.com/1194934"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21294",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-03-14T09:22:27Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21294"
    },
    {
      "cve": "CVE-2022-21296",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21296"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JAXP). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21296",
          "url": "https://www.suse.com/security/cve/CVE-2022-21296"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194932 for CVE-2022-21296",
          "url": "https://bugzilla.suse.com/1194932"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21296",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-03-14T09:22:27Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21296"
    },
    {
      "cve": "CVE-2022-21299",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21299"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JAXP). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21299",
          "url": "https://www.suse.com/security/cve/CVE-2022-21299"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194931 for CVE-2022-21299",
          "url": "https://bugzilla.suse.com/1194931"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21299",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-03-14T09:22:27Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21299"
    },
    {
      "cve": "CVE-2022-21305",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21305"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21305",
          "url": "https://www.suse.com/security/cve/CVE-2022-21305"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194939 for CVE-2022-21305",
          "url": "https://bugzilla.suse.com/1194939"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21305",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-03-14T09:22:27Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21305"
    },
    {
      "cve": "CVE-2022-21340",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21340"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21340",
          "url": "https://www.suse.com/security/cve/CVE-2022-21340"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194940 for CVE-2022-21340",
          "url": "https://bugzilla.suse.com/1194940"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21340",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-03-14T09:22:27Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21340"
    },
    {
      "cve": "CVE-2022-21341",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21341"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Serialization). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21341",
          "url": "https://www.suse.com/security/cve/CVE-2022-21341"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194941 for CVE-2022-21341",
          "url": "https://bugzilla.suse.com/1194941"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21341",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-03-14T09:22:27Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21341"
    },
    {
      "cve": "CVE-2022-21360",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21360"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: ImageIO). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21360",
          "url": "https://www.suse.com/security/cve/CVE-2022-21360"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194929 for CVE-2022-21360",
          "url": "https://bugzilla.suse.com/1194929"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21360",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-03-14T09:22:27Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21360"
    },
    {
      "cve": "CVE-2022-21365",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21365"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: ImageIO). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21365",
          "url": "https://www.suse.com/security/cve/CVE-2022-21365"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194928 for CVE-2022-21365",
          "url": "https://bugzilla.suse.com/1194928"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21365",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-03-14T09:22:27Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21365"
    },
    {
      "cve": "CVE-2022-21366",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21366"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: ImageIO). Supported versions that are affected are Oracle Java SE: 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x",
          "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21366",
          "url": "https://www.suse.com/security/cve/CVE-2022-21366"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194927 for CVE-2022-21366",
          "url": "https://bugzilla.suse.com/1194927"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21366",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.aarch64",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.s390x",
            "openSUSE Leap 15.3:java-11-openjdk-src-11.0.14.0-3.74.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-03-14T09:22:27Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21366"
    }
  ]
}

OPENSUSE-SU-2022:0870-1

Vulnerability from csaf_opensuse - Published: 2022-03-16 09:33 - Updated: 2022-03-16 09:33

Summary

Security update for java-1_8_0-openj9

Severity

Important

Notes

Title of the patch: Security update for java-1_8_0-openj9

Description of the patch: This update for java-1_8_0-openj9 fixes the following issues: Update to OpenJDK 8u322 build 04 with OpenJ9 0.30.0: - Fixing the following vulnerabilities: CVE-2022-21248 (bsc#1194926), CVE-2022-21277 (bsc#1194930), CVE-2022-21282 (bsc#1194933), CVE-2022-21291 (bsc#1194925), CVE-2022-21293 (bsc#1194935), CVE-2022-21294 (bsc#1194934), CVE-2022-21296 (bsc#1194932), CVE-2022-21299 (bsc#1194931), CVE-2022-21305 (bsc#1194939), CVE-2022-21340 (bsc#1194940), CVE-2022-21341 (bsc#1194941), CVE-2022-21360 (bsc#1194929), CVE-2022-21365 (bsc#1194928), CVE-2022-21366 (bsc#1194927).

Patchnames: openSUSE-SLE-15.3-2022-870,openSUSE-SLE-15.4-2022-870

Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).

CVE-2022-21248

3.7 (Low)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

Affected products

Recommended 19 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2022-21277

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 19 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21282

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Affected products

Recommended 19 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21291

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Affected products

Recommended 19 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21293

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 19 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21294

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 19 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21296

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Affected products

Recommended 19 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21299

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 19 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21305

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Affected products

Recommended 19 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21340

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 19 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21341

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 19 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21360

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 19 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21365

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 19 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21366

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 19 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64	—	Vendor Fix

Threats

Impact moderate

References

74 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/o…	self
https://lists.opensuse.org/archives/list/security…	self
https://lists.opensuse.org/archives/list/security…	self
https://bugzilla.suse.com/1194925	self
https://bugzilla.suse.com/1194926	self
https://bugzilla.suse.com/1194927	self
https://bugzilla.suse.com/1194928	self
https://bugzilla.suse.com/1194929	self
https://bugzilla.suse.com/1194930	self
https://bugzilla.suse.com/1194931	self
https://bugzilla.suse.com/1194932	self
https://bugzilla.suse.com/1194933	self
https://bugzilla.suse.com/1194934	self
https://bugzilla.suse.com/1194935	self
https://bugzilla.suse.com/1194939	self
https://bugzilla.suse.com/1194940	self
https://bugzilla.suse.com/1194941	self
https://www.suse.com/security/cve/CVE-2022-21248/	self
https://www.suse.com/security/cve/CVE-2022-21277/	self
https://www.suse.com/security/cve/CVE-2022-21282/	self
https://www.suse.com/security/cve/CVE-2022-21291/	self
https://www.suse.com/security/cve/CVE-2022-21293/	self
https://www.suse.com/security/cve/CVE-2022-21294/	self
https://www.suse.com/security/cve/CVE-2022-21296/	self
https://www.suse.com/security/cve/CVE-2022-21299/	self
https://www.suse.com/security/cve/CVE-2022-21305/	self
https://www.suse.com/security/cve/CVE-2022-21340/	self
https://www.suse.com/security/cve/CVE-2022-21341/	self
https://www.suse.com/security/cve/CVE-2022-21360/	self
https://www.suse.com/security/cve/CVE-2022-21365/	self
https://www.suse.com/security/cve/CVE-2022-21366/	self
https://www.suse.com/security/cve/CVE-2022-21248	external
https://bugzilla.suse.com/1194926	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21277	external
https://bugzilla.suse.com/1194930	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21282	external
https://bugzilla.suse.com/1194933	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21291	external
https://bugzilla.suse.com/1194925	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21293	external
https://bugzilla.suse.com/1194935	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21294	external
https://bugzilla.suse.com/1194934	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21296	external
https://bugzilla.suse.com/1194932	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21299	external
https://bugzilla.suse.com/1194931	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21305	external
https://bugzilla.suse.com/1194939	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21340	external
https://bugzilla.suse.com/1194940	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21341	external
https://bugzilla.suse.com/1194941	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21360	external
https://bugzilla.suse.com/1194929	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21365	external
https://bugzilla.suse.com/1194928	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21366	external
https://bugzilla.suse.com/1194927	external
https://bugzilla.suse.com/1197126	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for java-1_8_0-openj9",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for java-1_8_0-openj9 fixes the following issues:\n\nUpdate to OpenJDK 8u322 build 04 with OpenJ9 0.30.0:\n\n- Fixing the following vulnerabilities:\n  CVE-2022-21248 (bsc#1194926), CVE-2022-21277 (bsc#1194930),\n  CVE-2022-21282 (bsc#1194933), CVE-2022-21291 (bsc#1194925),\n  CVE-2022-21293 (bsc#1194935), CVE-2022-21294 (bsc#1194934),\n  CVE-2022-21296 (bsc#1194932), CVE-2022-21299 (bsc#1194931),\n  CVE-2022-21305 (bsc#1194939), CVE-2022-21340 (bsc#1194940),\n  CVE-2022-21341 (bsc#1194941), CVE-2022-21360 (bsc#1194929),\n  CVE-2022-21365 (bsc#1194928), CVE-2022-21366 (bsc#1194927).\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "openSUSE-SLE-15.3-2022-870,openSUSE-SLE-15.4-2022-870",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2022_0870-1.json"
      },
      {
        "category": "self",
        "summary": "URL for openSUSE-SU-2022:0870-1",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/K2HM7MZLDNJ2W6HOMDMSHAZDFGLK43HO/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for openSUSE-SU-2022:0870-1",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/K2HM7MZLDNJ2W6HOMDMSHAZDFGLK43HO/"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1194925",
        "url": "https://bugzilla.suse.com/1194925"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1194926",
        "url": "https://bugzilla.suse.com/1194926"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1194927",
        "url": "https://bugzilla.suse.com/1194927"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1194928",
        "url": "https://bugzilla.suse.com/1194928"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1194929",
        "url": "https://bugzilla.suse.com/1194929"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1194930",
        "url": "https://bugzilla.suse.com/1194930"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1194931",
        "url": "https://bugzilla.suse.com/1194931"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1194932",
        "url": "https://bugzilla.suse.com/1194932"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1194933",
        "url": "https://bugzilla.suse.com/1194933"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1194934",
        "url": "https://bugzilla.suse.com/1194934"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1194935",
        "url": "https://bugzilla.suse.com/1194935"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1194939",
        "url": "https://bugzilla.suse.com/1194939"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1194940",
        "url": "https://bugzilla.suse.com/1194940"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1194941",
        "url": "https://bugzilla.suse.com/1194941"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21248 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21248/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21277 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21277/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21282 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21282/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21291 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21291/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21293 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21293/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21294 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21294/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21296 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21296/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21299 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21299/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21305 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21305/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21340 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21340/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21341 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21341/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21360 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21360/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21365 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21365/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21366 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21366/"
      }
    ],
    "title": "Security update for java-1_8_0-openj9",
    "tracking": {
      "current_release_date": "2022-03-16T09:33:39Z",
      "generator": {
        "date": "2022-03-16T09:33:39Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "openSUSE-SU-2022:0870-1",
      "initial_release_date": "2022-03-16T09:33:39Z",
      "revision_history": [
        {
          "date": "2022-03-16T09:33:39Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch",
                "product": {
                  "name": "java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch",
                  "product_id": "java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch"
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le",
                "product": {
                  "name": "java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le",
                  "product_id": "java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le",
                "product": {
                  "name": "java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le",
                  "product_id": "java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le",
                "product": {
                  "name": "java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le",
                  "product_id": "java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le",
                "product": {
                  "name": "java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le",
                  "product_id": "java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le",
                "product": {
                  "name": "java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le",
                  "product_id": "java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le",
                "product": {
                  "name": "java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le",
                  "product_id": "java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "java-1_8_0-openj9-1.8.0.322-3.21.2.s390x",
                "product": {
                  "name": "java-1_8_0-openj9-1.8.0.322-3.21.2.s390x",
                  "product_id": "java-1_8_0-openj9-1.8.0.322-3.21.2.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x",
                "product": {
                  "name": "java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x",
                  "product_id": "java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x",
                "product": {
                  "name": "java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x",
                  "product_id": "java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x",
                "product": {
                  "name": "java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x",
                  "product_id": "java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x",
                "product": {
                  "name": "java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x",
                  "product_id": "java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x",
                "product": {
                  "name": "java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x",
                  "product_id": "java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64",
                "product": {
                  "name": "java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64",
                  "product_id": "java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64",
                "product": {
                  "name": "java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64",
                  "product_id": "java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64",
                "product": {
                  "name": "java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64",
                  "product_id": "java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64",
                "product": {
                  "name": "java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64",
                  "product_id": "java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64",
                "product": {
                  "name": "java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64",
                  "product_id": "java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64",
                "product": {
                  "name": "java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64",
                  "product_id": "java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "openSUSE Leap 15.3",
                "product": {
                  "name": "openSUSE Leap 15.3",
                  "product_id": "openSUSE Leap 15.3",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:leap:15.3"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le"
        },
        "product_reference": "java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-1_8_0-openj9-1.8.0.322-3.21.2.s390x as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x"
        },
        "product_reference": "java-1_8_0-openj9-1.8.0.322-3.21.2.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64 as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64"
        },
        "product_reference": "java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le"
        },
        "product_reference": "java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x"
        },
        "product_reference": "java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64 as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64"
        },
        "product_reference": "java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le"
        },
        "product_reference": "java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x"
        },
        "product_reference": "java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64 as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64"
        },
        "product_reference": "java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le"
        },
        "product_reference": "java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x"
        },
        "product_reference": "java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64 as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64"
        },
        "product_reference": "java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le"
        },
        "product_reference": "java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x"
        },
        "product_reference": "java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64 as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64"
        },
        "product_reference": "java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch"
        },
        "product_reference": "java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le"
        },
        "product_reference": "java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x"
        },
        "product_reference": "java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64 as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64"
        },
        "product_reference": "java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2022-21248",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21248"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Serialization). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 3.7 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch",
          "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21248",
          "url": "https://www.suse.com/security/cve/CVE-2022-21248"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194926 for CVE-2022-21248",
          "url": "https://bugzilla.suse.com/1194926"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21248",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.7,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-03-16T09:33:39Z",
          "details": "low"
        }
      ],
      "title": "CVE-2022-21248"
    },
    {
      "cve": "CVE-2022-21277",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21277"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: ImageIO). Supported versions that are affected are Oracle Java SE: 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch",
          "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21277",
          "url": "https://www.suse.com/security/cve/CVE-2022-21277"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194930 for CVE-2022-21277",
          "url": "https://bugzilla.suse.com/1194930"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21277",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-03-16T09:33:39Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21277"
    },
    {
      "cve": "CVE-2022-21282",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21282"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JAXP). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch",
          "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21282",
          "url": "https://www.suse.com/security/cve/CVE-2022-21282"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194933 for CVE-2022-21282",
          "url": "https://bugzilla.suse.com/1194933"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21282",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-03-16T09:33:39Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21282"
    },
    {
      "cve": "CVE-2022-21291",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21291"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch",
          "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21291",
          "url": "https://www.suse.com/security/cve/CVE-2022-21291"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194925 for CVE-2022-21291",
          "url": "https://bugzilla.suse.com/1194925"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21291",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-03-16T09:33:39Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21291"
    },
    {
      "cve": "CVE-2022-21293",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21293"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch",
          "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21293",
          "url": "https://www.suse.com/security/cve/CVE-2022-21293"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194935 for CVE-2022-21293",
          "url": "https://bugzilla.suse.com/1194935"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21293",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-03-16T09:33:39Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21293"
    },
    {
      "cve": "CVE-2022-21294",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21294"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch",
          "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21294",
          "url": "https://www.suse.com/security/cve/CVE-2022-21294"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194934 for CVE-2022-21294",
          "url": "https://bugzilla.suse.com/1194934"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21294",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-03-16T09:33:39Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21294"
    },
    {
      "cve": "CVE-2022-21296",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21296"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JAXP). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch",
          "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21296",
          "url": "https://www.suse.com/security/cve/CVE-2022-21296"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194932 for CVE-2022-21296",
          "url": "https://bugzilla.suse.com/1194932"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21296",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-03-16T09:33:39Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21296"
    },
    {
      "cve": "CVE-2022-21299",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21299"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JAXP). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch",
          "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21299",
          "url": "https://www.suse.com/security/cve/CVE-2022-21299"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194931 for CVE-2022-21299",
          "url": "https://bugzilla.suse.com/1194931"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21299",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-03-16T09:33:39Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21299"
    },
    {
      "cve": "CVE-2022-21305",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21305"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch",
          "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21305",
          "url": "https://www.suse.com/security/cve/CVE-2022-21305"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194939 for CVE-2022-21305",
          "url": "https://bugzilla.suse.com/1194939"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21305",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-03-16T09:33:39Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21305"
    },
    {
      "cve": "CVE-2022-21340",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21340"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch",
          "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21340",
          "url": "https://www.suse.com/security/cve/CVE-2022-21340"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194940 for CVE-2022-21340",
          "url": "https://bugzilla.suse.com/1194940"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21340",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-03-16T09:33:39Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21340"
    },
    {
      "cve": "CVE-2022-21341",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21341"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Serialization). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch",
          "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21341",
          "url": "https://www.suse.com/security/cve/CVE-2022-21341"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194941 for CVE-2022-21341",
          "url": "https://bugzilla.suse.com/1194941"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21341",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-03-16T09:33:39Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21341"
    },
    {
      "cve": "CVE-2022-21360",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21360"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: ImageIO). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch",
          "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21360",
          "url": "https://www.suse.com/security/cve/CVE-2022-21360"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194929 for CVE-2022-21360",
          "url": "https://bugzilla.suse.com/1194929"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21360",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-03-16T09:33:39Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21360"
    },
    {
      "cve": "CVE-2022-21365",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21365"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: ImageIO). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch",
          "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21365",
          "url": "https://www.suse.com/security/cve/CVE-2022-21365"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194928 for CVE-2022-21365",
          "url": "https://bugzilla.suse.com/1194928"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21365",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-03-16T09:33:39Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21365"
    },
    {
      "cve": "CVE-2022-21366",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21366"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: ImageIO). Supported versions that are affected are Oracle Java SE: 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch",
          "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x",
          "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21366",
          "url": "https://www.suse.com/security/cve/CVE-2022-21366"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194927 for CVE-2022-21366",
          "url": "https://bugzilla.suse.com/1194927"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21366",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x",
            "openSUSE Leap 15.3:java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-03-16T09:33:39Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21366"
    }
  ]
}

OPENSUSE-SU-2022:1027-1

Vulnerability from csaf_opensuse - Published: 2022-03-29 13:42 - Updated: 2022-03-29 13:42

Summary

Security update for java-1_8_0-ibm

Severity

Important

Notes

Title of the patch: Security update for java-1_8_0-ibm

Description of the patch: This update for java-1_8_0-ibm fixes the following issues: Update Java 8.0 to Service Refresh 7 Fix Pack 5 (bsc#1197126). Including fixes for the following vulnerabilities: CVE-2022-21366, CVE-2022-21365, CVE-2022-21360, CVE-2022-21349, CVE-2022-21341, CVE-2022-21340, CVE-2022-21305, CVE-2022-21277, CVE-2022-21299, CVE-2022-21296, CVE-2022-21282, CVE-2022-21294, CVE-2022-21293, CVE-2022-21291, CVE-2022-21283, CVE-2022-21248, CVE-2022-21271. Non-securtiy fix: - Fixed a broken symlink for javaws (bsc#1195146).

Patchnames: openSUSE-SLE-15.3-2022-1027,openSUSE-SLE-15.4-2022-1027

Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).

CVE-2022-21248

3.7 (Low)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2022-21271

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21277

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21282

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21283

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21291

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21293

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21294

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21296

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21299

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21305

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21340

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21341

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21349

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21360

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21365

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21366

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64	—	Vendor Fix

Threats

Impact moderate

References

89 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/o…	self
https://lists.opensuse.org/archives/list/security…	self
https://lists.opensuse.org/archives/list/security…	self
https://bugzilla.suse.com/1194925	self
https://bugzilla.suse.com/1194926	self
https://bugzilla.suse.com/1194927	self
https://bugzilla.suse.com/1194928	self
https://bugzilla.suse.com/1194929	self
https://bugzilla.suse.com/1194930	self
https://bugzilla.suse.com/1194931	self
https://bugzilla.suse.com/1194932	self
https://bugzilla.suse.com/1194933	self
https://bugzilla.suse.com/1194934	self
https://bugzilla.suse.com/1194935	self
https://bugzilla.suse.com/1194937	self
https://bugzilla.suse.com/1194939	self
https://bugzilla.suse.com/1194940	self
https://bugzilla.suse.com/1194941	self
https://bugzilla.suse.com/1195146	self
https://bugzilla.suse.com/1196500	self
https://bugzilla.suse.com/1197126	self
https://www.suse.com/security/cve/CVE-2022-21248/	self
https://www.suse.com/security/cve/CVE-2022-21271/	self
https://www.suse.com/security/cve/CVE-2022-21277/	self
https://www.suse.com/security/cve/CVE-2022-21282/	self
https://www.suse.com/security/cve/CVE-2022-21283/	self
https://www.suse.com/security/cve/CVE-2022-21291/	self
https://www.suse.com/security/cve/CVE-2022-21293/	self
https://www.suse.com/security/cve/CVE-2022-21294/	self
https://www.suse.com/security/cve/CVE-2022-21296/	self
https://www.suse.com/security/cve/CVE-2022-21299/	self
https://www.suse.com/security/cve/CVE-2022-21305/	self
https://www.suse.com/security/cve/CVE-2022-21340/	self
https://www.suse.com/security/cve/CVE-2022-21341/	self
https://www.suse.com/security/cve/CVE-2022-21349/	self
https://www.suse.com/security/cve/CVE-2022-21360/	self
https://www.suse.com/security/cve/CVE-2022-21365/	self
https://www.suse.com/security/cve/CVE-2022-21366/	self
https://www.suse.com/security/cve/CVE-2022-21248	external
https://bugzilla.suse.com/1194926	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21271	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21277	external
https://bugzilla.suse.com/1194930	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21282	external
https://bugzilla.suse.com/1194933	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21283	external
https://bugzilla.suse.com/1194937	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21291	external
https://bugzilla.suse.com/1194925	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21293	external
https://bugzilla.suse.com/1194935	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21294	external
https://bugzilla.suse.com/1194934	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21296	external
https://bugzilla.suse.com/1194932	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21299	external
https://bugzilla.suse.com/1194931	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21305	external
https://bugzilla.suse.com/1194939	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21340	external
https://bugzilla.suse.com/1194940	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21341	external
https://bugzilla.suse.com/1194941	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21349	external
https://bugzilla.suse.com/1196500	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21360	external
https://bugzilla.suse.com/1194929	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21365	external
https://bugzilla.suse.com/1194928	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21366	external
https://bugzilla.suse.com/1194927	external
https://bugzilla.suse.com/1197126	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for java-1_8_0-ibm",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for java-1_8_0-ibm fixes the following issues:\n\nUpdate Java 8.0 to Service Refresh 7 Fix Pack 5 (bsc#1197126).\n\nIncluding fixes for the following vulnerabilities: \n\n  CVE-2022-21366, CVE-2022-21365, CVE-2022-21360, CVE-2022-21349,\n  CVE-2022-21341, CVE-2022-21340, CVE-2022-21305, CVE-2022-21277,\n  CVE-2022-21299, CVE-2022-21296, CVE-2022-21282, CVE-2022-21294,\n  CVE-2022-21293, CVE-2022-21291, CVE-2022-21283, CVE-2022-21248,\n  CVE-2022-21271.\n\nNon-securtiy fix:\n\n- Fixed a broken symlink for javaws (bsc#1195146).\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "openSUSE-SLE-15.3-2022-1027,openSUSE-SLE-15.4-2022-1027",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2022_1027-1.json"
      },
      {
        "category": "self",
        "summary": "URL for openSUSE-SU-2022:1027-1",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/2EH4HQJU5VK7ZC3BHZTQT6QUXNTGNXVQ/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for openSUSE-SU-2022:1027-1",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/2EH4HQJU5VK7ZC3BHZTQT6QUXNTGNXVQ/"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1194925",
        "url": "https://bugzilla.suse.com/1194925"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1194926",
        "url": "https://bugzilla.suse.com/1194926"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1194927",
        "url": "https://bugzilla.suse.com/1194927"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1194928",
        "url": "https://bugzilla.suse.com/1194928"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1194929",
        "url": "https://bugzilla.suse.com/1194929"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1194930",
        "url": "https://bugzilla.suse.com/1194930"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1194931",
        "url": "https://bugzilla.suse.com/1194931"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1194932",
        "url": "https://bugzilla.suse.com/1194932"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1194933",
        "url": "https://bugzilla.suse.com/1194933"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1194934",
        "url": "https://bugzilla.suse.com/1194934"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1194935",
        "url": "https://bugzilla.suse.com/1194935"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1194937",
        "url": "https://bugzilla.suse.com/1194937"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1194939",
        "url": "https://bugzilla.suse.com/1194939"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1194940",
        "url": "https://bugzilla.suse.com/1194940"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1194941",
        "url": "https://bugzilla.suse.com/1194941"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1195146",
        "url": "https://bugzilla.suse.com/1195146"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1196500",
        "url": "https://bugzilla.suse.com/1196500"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1197126",
        "url": "https://bugzilla.suse.com/1197126"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21248 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21248/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21271 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21271/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21277 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21277/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21282 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21282/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21283 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21283/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21291 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21291/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21293 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21293/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21294 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21294/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21296 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21296/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21299 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21299/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21305 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21305/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21340 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21340/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21341 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21341/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21349 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21349/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21360 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21360/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21365 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21365/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21366 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21366/"
      }
    ],
    "title": "Security update for java-1_8_0-ibm",
    "tracking": {
      "current_release_date": "2022-03-29T13:42:03Z",
      "generator": {
        "date": "2022-03-29T13:42:03Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "openSUSE-SU-2022:1027-1",
      "initial_release_date": "2022-03-29T13:42:03Z",
      "revision_history": [
        {
          "date": "2022-03-29T13:42:03Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le",
                "product": {
                  "name": "java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le",
                  "product_id": "java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le",
                "product": {
                  "name": "java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le",
                  "product_id": "java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le",
                "product": {
                  "name": "java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le",
                  "product_id": "java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le",
                "product": {
                  "name": "java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le",
                  "product_id": "java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x",
                "product": {
                  "name": "java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x",
                  "product_id": "java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x",
                "product": {
                  "name": "java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x",
                  "product_id": "java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x",
                "product": {
                  "name": "java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x",
                  "product_id": "java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x",
                "product": {
                  "name": "java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x",
                  "product_id": "java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64",
                "product": {
                  "name": "java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64",
                  "product_id": "java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
                "product": {
                  "name": "java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
                  "product_id": "java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64",
                "product": {
                  "name": "java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64",
                  "product_id": "java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64",
                "product": {
                  "name": "java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64",
                  "product_id": "java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64",
                "product": {
                  "name": "java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64",
                  "product_id": "java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
                "product": {
                  "name": "java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
                  "product_id": "java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64",
                "product": {
                  "name": "java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64",
                  "product_id": "java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64",
                "product": {
                  "name": "java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64",
                  "product_id": "java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "openSUSE Leap 15.3",
                "product": {
                  "name": "openSUSE Leap 15.3",
                  "product_id": "openSUSE Leap 15.3",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:leap:15.3"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le"
        },
        "product_reference": "java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x"
        },
        "product_reference": "java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64 as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64"
        },
        "product_reference": "java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64 as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64"
        },
        "product_reference": "java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64 as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64"
        },
        "product_reference": "java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le"
        },
        "product_reference": "java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x"
        },
        "product_reference": "java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64 as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64"
        },
        "product_reference": "java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le"
        },
        "product_reference": "java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x"
        },
        "product_reference": "java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64 as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64"
        },
        "product_reference": "java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64 as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64"
        },
        "product_reference": "java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64 as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64"
        },
        "product_reference": "java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le"
        },
        "product_reference": "java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x"
        },
        "product_reference": "java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64 as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64"
        },
        "product_reference": "java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2022-21248",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21248"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Serialization). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 3.7 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21248",
          "url": "https://www.suse.com/security/cve/CVE-2022-21248"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194926 for CVE-2022-21248",
          "url": "https://bugzilla.suse.com/1194926"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21248",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.7,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-03-29T13:42:03Z",
          "details": "low"
        }
      ],
      "title": "CVE-2022-21248"
    },
    {
      "cve": "CVE-2022-21271",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21271"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21271",
          "url": "https://www.suse.com/security/cve/CVE-2022-21271"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21271",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-03-29T13:42:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21271"
    },
    {
      "cve": "CVE-2022-21277",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21277"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: ImageIO). Supported versions that are affected are Oracle Java SE: 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21277",
          "url": "https://www.suse.com/security/cve/CVE-2022-21277"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194930 for CVE-2022-21277",
          "url": "https://bugzilla.suse.com/1194930"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21277",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-03-29T13:42:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21277"
    },
    {
      "cve": "CVE-2022-21282",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21282"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JAXP). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21282",
          "url": "https://www.suse.com/security/cve/CVE-2022-21282"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194933 for CVE-2022-21282",
          "url": "https://bugzilla.suse.com/1194933"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21282",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-03-29T13:42:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21282"
    },
    {
      "cve": "CVE-2022-21283",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21283"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21283",
          "url": "https://www.suse.com/security/cve/CVE-2022-21283"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194937 for CVE-2022-21283",
          "url": "https://bugzilla.suse.com/1194937"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21283",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-03-29T13:42:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21283"
    },
    {
      "cve": "CVE-2022-21291",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21291"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21291",
          "url": "https://www.suse.com/security/cve/CVE-2022-21291"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194925 for CVE-2022-21291",
          "url": "https://bugzilla.suse.com/1194925"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21291",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-03-29T13:42:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21291"
    },
    {
      "cve": "CVE-2022-21293",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21293"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21293",
          "url": "https://www.suse.com/security/cve/CVE-2022-21293"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194935 for CVE-2022-21293",
          "url": "https://bugzilla.suse.com/1194935"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21293",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-03-29T13:42:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21293"
    },
    {
      "cve": "CVE-2022-21294",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21294"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21294",
          "url": "https://www.suse.com/security/cve/CVE-2022-21294"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194934 for CVE-2022-21294",
          "url": "https://bugzilla.suse.com/1194934"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21294",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-03-29T13:42:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21294"
    },
    {
      "cve": "CVE-2022-21296",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21296"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JAXP). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21296",
          "url": "https://www.suse.com/security/cve/CVE-2022-21296"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194932 for CVE-2022-21296",
          "url": "https://bugzilla.suse.com/1194932"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21296",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-03-29T13:42:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21296"
    },
    {
      "cve": "CVE-2022-21299",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21299"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JAXP). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21299",
          "url": "https://www.suse.com/security/cve/CVE-2022-21299"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194931 for CVE-2022-21299",
          "url": "https://bugzilla.suse.com/1194931"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21299",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-03-29T13:42:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21299"
    },
    {
      "cve": "CVE-2022-21305",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21305"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21305",
          "url": "https://www.suse.com/security/cve/CVE-2022-21305"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194939 for CVE-2022-21305",
          "url": "https://bugzilla.suse.com/1194939"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21305",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-03-29T13:42:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21305"
    },
    {
      "cve": "CVE-2022-21340",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21340"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21340",
          "url": "https://www.suse.com/security/cve/CVE-2022-21340"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194940 for CVE-2022-21340",
          "url": "https://bugzilla.suse.com/1194940"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21340",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-03-29T13:42:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21340"
    },
    {
      "cve": "CVE-2022-21341",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21341"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Serialization). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21341",
          "url": "https://www.suse.com/security/cve/CVE-2022-21341"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194941 for CVE-2022-21341",
          "url": "https://bugzilla.suse.com/1194941"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21341",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-03-29T13:42:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21341"
    },
    {
      "cve": "CVE-2022-21349",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21349"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: 2D). Supported versions that are affected are Oracle Java SE: 7u321, 8u311; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21349",
          "url": "https://www.suse.com/security/cve/CVE-2022-21349"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1196500 for CVE-2022-21349",
          "url": "https://bugzilla.suse.com/1196500"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21349",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-03-29T13:42:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21349"
    },
    {
      "cve": "CVE-2022-21360",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21360"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: ImageIO). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21360",
          "url": "https://www.suse.com/security/cve/CVE-2022-21360"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194929 for CVE-2022-21360",
          "url": "https://bugzilla.suse.com/1194929"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21360",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-03-29T13:42:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21360"
    },
    {
      "cve": "CVE-2022-21365",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21365"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: ImageIO). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21365",
          "url": "https://www.suse.com/security/cve/CVE-2022-21365"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194928 for CVE-2022-21365",
          "url": "https://bugzilla.suse.com/1194928"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21365",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-03-29T13:42:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21365"
    },
    {
      "cve": "CVE-2022-21366",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21366"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: ImageIO). Supported versions that are affected are Oracle Java SE: 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64",
          "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le",
          "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x",
          "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21366",
          "url": "https://www.suse.com/security/cve/CVE-2022-21366"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194927 for CVE-2022-21366",
          "url": "https://bugzilla.suse.com/1194927"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21366",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x",
            "openSUSE Leap 15.3:java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-03-29T13:42:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21366"
    }
  ]
}

OPENSUSE-SU-2024:11798-1

Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00

Summary

java-11-openjdk-11.0.14.0-1.1 on GA media

Severity

Moderate

Notes

Title of the patch: java-11-openjdk-11.0.14.0-1.1 on GA media

Description of the patch: These are all security issues fixed in the java-11-openjdk-11.0.14.0-1.1 package on the GA media of openSUSE Tumbleweed.

Patchnames: openSUSE-Tumbleweed-2024-11798

Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).

CVE-2022-21248

3.7 (Low)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

Affected products

Recommended 32 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2022-21277

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 32 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21282

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Affected products

Recommended 32 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21283

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 32 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21291

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Affected products

Recommended 32 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21293

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 32 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21294

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 32 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21296

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Affected products

Recommended 32 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21299

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 32 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21305

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Affected products

Recommended 32 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21340

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 32 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21341

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 32 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21360

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 32 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21365

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 32 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21366

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 32 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

References

62 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/o…	self
https://www.suse.com/security/cve/CVE-2022-21248/	self
https://www.suse.com/security/cve/CVE-2022-21277/	self
https://www.suse.com/security/cve/CVE-2022-21282/	self
https://www.suse.com/security/cve/CVE-2022-21283/	self
https://www.suse.com/security/cve/CVE-2022-21291/	self
https://www.suse.com/security/cve/CVE-2022-21293/	self
https://www.suse.com/security/cve/CVE-2022-21294/	self
https://www.suse.com/security/cve/CVE-2022-21296/	self
https://www.suse.com/security/cve/CVE-2022-21299/	self
https://www.suse.com/security/cve/CVE-2022-21305/	self
https://www.suse.com/security/cve/CVE-2022-21340/	self
https://www.suse.com/security/cve/CVE-2022-21341/	self
https://www.suse.com/security/cve/CVE-2022-21360/	self
https://www.suse.com/security/cve/CVE-2022-21365/	self
https://www.suse.com/security/cve/CVE-2022-21366/	self
https://www.suse.com/security/cve/CVE-2022-21248	external
https://bugzilla.suse.com/1194926	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21277	external
https://bugzilla.suse.com/1194930	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21282	external
https://bugzilla.suse.com/1194933	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21283	external
https://bugzilla.suse.com/1194937	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21291	external
https://bugzilla.suse.com/1194925	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21293	external
https://bugzilla.suse.com/1194935	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21294	external
https://bugzilla.suse.com/1194934	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21296	external
https://bugzilla.suse.com/1194932	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21299	external
https://bugzilla.suse.com/1194931	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21305	external
https://bugzilla.suse.com/1194939	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21340	external
https://bugzilla.suse.com/1194940	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21341	external
https://bugzilla.suse.com/1194941	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21360	external
https://bugzilla.suse.com/1194929	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21365	external
https://bugzilla.suse.com/1194928	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21366	external
https://bugzilla.suse.com/1194927	external
https://bugzilla.suse.com/1197126	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "java-11-openjdk-11.0.14.0-1.1 on GA media",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "These are all security issues fixed in the java-11-openjdk-11.0.14.0-1.1 package on the GA media of openSUSE Tumbleweed.",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "openSUSE-Tumbleweed-2024-11798",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_11798-1.json"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21248 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21248/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21277 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21277/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21282 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21282/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21283 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21283/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21291 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21291/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21293 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21293/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21294 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21294/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21296 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21296/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21299 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21299/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21305 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21305/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21340 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21340/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21341 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21341/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21360 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21360/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21365 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21365/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21366 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21366/"
      }
    ],
    "title": "java-11-openjdk-11.0.14.0-1.1 on GA media",
    "tracking": {
      "current_release_date": "2024-06-15T00:00:00Z",
      "generator": {
        "date": "2024-06-15T00:00:00Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "openSUSE-SU-2024:11798-1",
      "initial_release_date": "2024-06-15T00:00:00Z",
      "revision_history": [
        {
          "date": "2024-06-15T00:00:00Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "java-11-openjdk-11.0.14.0-1.1.aarch64",
                "product": {
                  "name": "java-11-openjdk-11.0.14.0-1.1.aarch64",
                  "product_id": "java-11-openjdk-11.0.14.0-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64",
                "product": {
                  "name": "java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64",
                  "product_id": "java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "java-11-openjdk-demo-11.0.14.0-1.1.aarch64",
                "product": {
                  "name": "java-11-openjdk-demo-11.0.14.0-1.1.aarch64",
                  "product_id": "java-11-openjdk-demo-11.0.14.0-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "java-11-openjdk-devel-11.0.14.0-1.1.aarch64",
                "product": {
                  "name": "java-11-openjdk-devel-11.0.14.0-1.1.aarch64",
                  "product_id": "java-11-openjdk-devel-11.0.14.0-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "java-11-openjdk-headless-11.0.14.0-1.1.aarch64",
                "product": {
                  "name": "java-11-openjdk-headless-11.0.14.0-1.1.aarch64",
                  "product_id": "java-11-openjdk-headless-11.0.14.0-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64",
                "product": {
                  "name": "java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64",
                  "product_id": "java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "java-11-openjdk-jmods-11.0.14.0-1.1.aarch64",
                "product": {
                  "name": "java-11-openjdk-jmods-11.0.14.0-1.1.aarch64",
                  "product_id": "java-11-openjdk-jmods-11.0.14.0-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "java-11-openjdk-src-11.0.14.0-1.1.aarch64",
                "product": {
                  "name": "java-11-openjdk-src-11.0.14.0-1.1.aarch64",
                  "product_id": "java-11-openjdk-src-11.0.14.0-1.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "java-11-openjdk-11.0.14.0-1.1.ppc64le",
                "product": {
                  "name": "java-11-openjdk-11.0.14.0-1.1.ppc64le",
                  "product_id": "java-11-openjdk-11.0.14.0-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le",
                "product": {
                  "name": "java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le",
                  "product_id": "java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "java-11-openjdk-demo-11.0.14.0-1.1.ppc64le",
                "product": {
                  "name": "java-11-openjdk-demo-11.0.14.0-1.1.ppc64le",
                  "product_id": "java-11-openjdk-demo-11.0.14.0-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "java-11-openjdk-devel-11.0.14.0-1.1.ppc64le",
                "product": {
                  "name": "java-11-openjdk-devel-11.0.14.0-1.1.ppc64le",
                  "product_id": "java-11-openjdk-devel-11.0.14.0-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "java-11-openjdk-headless-11.0.14.0-1.1.ppc64le",
                "product": {
                  "name": "java-11-openjdk-headless-11.0.14.0-1.1.ppc64le",
                  "product_id": "java-11-openjdk-headless-11.0.14.0-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le",
                "product": {
                  "name": "java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le",
                  "product_id": "java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le",
                "product": {
                  "name": "java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le",
                  "product_id": "java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "java-11-openjdk-src-11.0.14.0-1.1.ppc64le",
                "product": {
                  "name": "java-11-openjdk-src-11.0.14.0-1.1.ppc64le",
                  "product_id": "java-11-openjdk-src-11.0.14.0-1.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "java-11-openjdk-11.0.14.0-1.1.s390x",
                "product": {
                  "name": "java-11-openjdk-11.0.14.0-1.1.s390x",
                  "product_id": "java-11-openjdk-11.0.14.0-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "java-11-openjdk-accessibility-11.0.14.0-1.1.s390x",
                "product": {
                  "name": "java-11-openjdk-accessibility-11.0.14.0-1.1.s390x",
                  "product_id": "java-11-openjdk-accessibility-11.0.14.0-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "java-11-openjdk-demo-11.0.14.0-1.1.s390x",
                "product": {
                  "name": "java-11-openjdk-demo-11.0.14.0-1.1.s390x",
                  "product_id": "java-11-openjdk-demo-11.0.14.0-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "java-11-openjdk-devel-11.0.14.0-1.1.s390x",
                "product": {
                  "name": "java-11-openjdk-devel-11.0.14.0-1.1.s390x",
                  "product_id": "java-11-openjdk-devel-11.0.14.0-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "java-11-openjdk-headless-11.0.14.0-1.1.s390x",
                "product": {
                  "name": "java-11-openjdk-headless-11.0.14.0-1.1.s390x",
                  "product_id": "java-11-openjdk-headless-11.0.14.0-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "java-11-openjdk-javadoc-11.0.14.0-1.1.s390x",
                "product": {
                  "name": "java-11-openjdk-javadoc-11.0.14.0-1.1.s390x",
                  "product_id": "java-11-openjdk-javadoc-11.0.14.0-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "java-11-openjdk-jmods-11.0.14.0-1.1.s390x",
                "product": {
                  "name": "java-11-openjdk-jmods-11.0.14.0-1.1.s390x",
                  "product_id": "java-11-openjdk-jmods-11.0.14.0-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "java-11-openjdk-src-11.0.14.0-1.1.s390x",
                "product": {
                  "name": "java-11-openjdk-src-11.0.14.0-1.1.s390x",
                  "product_id": "java-11-openjdk-src-11.0.14.0-1.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "java-11-openjdk-11.0.14.0-1.1.x86_64",
                "product": {
                  "name": "java-11-openjdk-11.0.14.0-1.1.x86_64",
                  "product_id": "java-11-openjdk-11.0.14.0-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64",
                "product": {
                  "name": "java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64",
                  "product_id": "java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "java-11-openjdk-demo-11.0.14.0-1.1.x86_64",
                "product": {
                  "name": "java-11-openjdk-demo-11.0.14.0-1.1.x86_64",
                  "product_id": "java-11-openjdk-demo-11.0.14.0-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "java-11-openjdk-devel-11.0.14.0-1.1.x86_64",
                "product": {
                  "name": "java-11-openjdk-devel-11.0.14.0-1.1.x86_64",
                  "product_id": "java-11-openjdk-devel-11.0.14.0-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "java-11-openjdk-headless-11.0.14.0-1.1.x86_64",
                "product": {
                  "name": "java-11-openjdk-headless-11.0.14.0-1.1.x86_64",
                  "product_id": "java-11-openjdk-headless-11.0.14.0-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64",
                "product": {
                  "name": "java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64",
                  "product_id": "java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "java-11-openjdk-jmods-11.0.14.0-1.1.x86_64",
                "product": {
                  "name": "java-11-openjdk-jmods-11.0.14.0-1.1.x86_64",
                  "product_id": "java-11-openjdk-jmods-11.0.14.0-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "java-11-openjdk-src-11.0.14.0-1.1.x86_64",
                "product": {
                  "name": "java-11-openjdk-src-11.0.14.0-1.1.x86_64",
                  "product_id": "java-11-openjdk-src-11.0.14.0-1.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "openSUSE Tumbleweed",
                "product": {
                  "name": "openSUSE Tumbleweed",
                  "product_id": "openSUSE Tumbleweed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:tumbleweed"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-11.0.14.0-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64"
        },
        "product_reference": "java-11-openjdk-11.0.14.0-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-11.0.14.0-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le"
        },
        "product_reference": "java-11-openjdk-11.0.14.0-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-11.0.14.0-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x"
        },
        "product_reference": "java-11-openjdk-11.0.14.0-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-11.0.14.0-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64"
        },
        "product_reference": "java-11-openjdk-11.0.14.0-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64"
        },
        "product_reference": "java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le"
        },
        "product_reference": "java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-accessibility-11.0.14.0-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x"
        },
        "product_reference": "java-11-openjdk-accessibility-11.0.14.0-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64"
        },
        "product_reference": "java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-demo-11.0.14.0-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64"
        },
        "product_reference": "java-11-openjdk-demo-11.0.14.0-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-demo-11.0.14.0-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le"
        },
        "product_reference": "java-11-openjdk-demo-11.0.14.0-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-demo-11.0.14.0-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x"
        },
        "product_reference": "java-11-openjdk-demo-11.0.14.0-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-demo-11.0.14.0-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64"
        },
        "product_reference": "java-11-openjdk-demo-11.0.14.0-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-devel-11.0.14.0-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64"
        },
        "product_reference": "java-11-openjdk-devel-11.0.14.0-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-devel-11.0.14.0-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le"
        },
        "product_reference": "java-11-openjdk-devel-11.0.14.0-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-devel-11.0.14.0-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x"
        },
        "product_reference": "java-11-openjdk-devel-11.0.14.0-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-devel-11.0.14.0-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64"
        },
        "product_reference": "java-11-openjdk-devel-11.0.14.0-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-headless-11.0.14.0-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64"
        },
        "product_reference": "java-11-openjdk-headless-11.0.14.0-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-headless-11.0.14.0-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le"
        },
        "product_reference": "java-11-openjdk-headless-11.0.14.0-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-headless-11.0.14.0-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x"
        },
        "product_reference": "java-11-openjdk-headless-11.0.14.0-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-headless-11.0.14.0-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64"
        },
        "product_reference": "java-11-openjdk-headless-11.0.14.0-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64"
        },
        "product_reference": "java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le"
        },
        "product_reference": "java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-javadoc-11.0.14.0-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x"
        },
        "product_reference": "java-11-openjdk-javadoc-11.0.14.0-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64"
        },
        "product_reference": "java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-jmods-11.0.14.0-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64"
        },
        "product_reference": "java-11-openjdk-jmods-11.0.14.0-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le"
        },
        "product_reference": "java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-jmods-11.0.14.0-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x"
        },
        "product_reference": "java-11-openjdk-jmods-11.0.14.0-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-jmods-11.0.14.0-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64"
        },
        "product_reference": "java-11-openjdk-jmods-11.0.14.0-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-src-11.0.14.0-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64"
        },
        "product_reference": "java-11-openjdk-src-11.0.14.0-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-src-11.0.14.0-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le"
        },
        "product_reference": "java-11-openjdk-src-11.0.14.0-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-src-11.0.14.0-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x"
        },
        "product_reference": "java-11-openjdk-src-11.0.14.0-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-11-openjdk-src-11.0.14.0-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64"
        },
        "product_reference": "java-11-openjdk-src-11.0.14.0-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2022-21248",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21248"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Serialization). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 3.7 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21248",
          "url": "https://www.suse.com/security/cve/CVE-2022-21248"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194926 for CVE-2022-21248",
          "url": "https://bugzilla.suse.com/1194926"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21248",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.7,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "low"
        }
      ],
      "title": "CVE-2022-21248"
    },
    {
      "cve": "CVE-2022-21277",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21277"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: ImageIO). Supported versions that are affected are Oracle Java SE: 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21277",
          "url": "https://www.suse.com/security/cve/CVE-2022-21277"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194930 for CVE-2022-21277",
          "url": "https://bugzilla.suse.com/1194930"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21277",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21277"
    },
    {
      "cve": "CVE-2022-21282",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21282"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JAXP). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21282",
          "url": "https://www.suse.com/security/cve/CVE-2022-21282"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194933 for CVE-2022-21282",
          "url": "https://bugzilla.suse.com/1194933"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21282",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21282"
    },
    {
      "cve": "CVE-2022-21283",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21283"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21283",
          "url": "https://www.suse.com/security/cve/CVE-2022-21283"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194937 for CVE-2022-21283",
          "url": "https://bugzilla.suse.com/1194937"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21283",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21283"
    },
    {
      "cve": "CVE-2022-21291",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21291"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21291",
          "url": "https://www.suse.com/security/cve/CVE-2022-21291"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194925 for CVE-2022-21291",
          "url": "https://bugzilla.suse.com/1194925"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21291",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21291"
    },
    {
      "cve": "CVE-2022-21293",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21293"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21293",
          "url": "https://www.suse.com/security/cve/CVE-2022-21293"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194935 for CVE-2022-21293",
          "url": "https://bugzilla.suse.com/1194935"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21293",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21293"
    },
    {
      "cve": "CVE-2022-21294",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21294"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21294",
          "url": "https://www.suse.com/security/cve/CVE-2022-21294"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194934 for CVE-2022-21294",
          "url": "https://bugzilla.suse.com/1194934"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21294",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21294"
    },
    {
      "cve": "CVE-2022-21296",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21296"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JAXP). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21296",
          "url": "https://www.suse.com/security/cve/CVE-2022-21296"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194932 for CVE-2022-21296",
          "url": "https://bugzilla.suse.com/1194932"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21296",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21296"
    },
    {
      "cve": "CVE-2022-21299",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21299"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JAXP). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21299",
          "url": "https://www.suse.com/security/cve/CVE-2022-21299"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194931 for CVE-2022-21299",
          "url": "https://bugzilla.suse.com/1194931"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21299",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21299"
    },
    {
      "cve": "CVE-2022-21305",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21305"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21305",
          "url": "https://www.suse.com/security/cve/CVE-2022-21305"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194939 for CVE-2022-21305",
          "url": "https://bugzilla.suse.com/1194939"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21305",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21305"
    },
    {
      "cve": "CVE-2022-21340",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21340"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21340",
          "url": "https://www.suse.com/security/cve/CVE-2022-21340"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194940 for CVE-2022-21340",
          "url": "https://bugzilla.suse.com/1194940"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21340",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21340"
    },
    {
      "cve": "CVE-2022-21341",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21341"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Serialization). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21341",
          "url": "https://www.suse.com/security/cve/CVE-2022-21341"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194941 for CVE-2022-21341",
          "url": "https://bugzilla.suse.com/1194941"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21341",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21341"
    },
    {
      "cve": "CVE-2022-21360",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21360"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: ImageIO). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21360",
          "url": "https://www.suse.com/security/cve/CVE-2022-21360"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194929 for CVE-2022-21360",
          "url": "https://bugzilla.suse.com/1194929"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21360",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21360"
    },
    {
      "cve": "CVE-2022-21365",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21365"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: ImageIO). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21365",
          "url": "https://www.suse.com/security/cve/CVE-2022-21365"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194928 for CVE-2022-21365",
          "url": "https://bugzilla.suse.com/1194928"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21365",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21365"
    },
    {
      "cve": "CVE-2022-21366",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21366"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: ImageIO). Supported versions that are affected are Oracle Java SE: 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x",
          "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21366",
          "url": "https://www.suse.com/security/cve/CVE-2022-21366"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194927 for CVE-2022-21366",
          "url": "https://bugzilla.suse.com/1194927"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21366",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-accessibility-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-demo-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-devel-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-headless-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-javadoc-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-jmods-11.0.14.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.s390x",
            "openSUSE Tumbleweed:java-11-openjdk-src-11.0.14.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21366"
    }
  ]
}

OPENSUSE-SU-2024:11799-1

Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00

Summary

java-15-openjdk-15.0.6.0-1.1 on GA media

Severity

Moderate

Notes

Title of the patch: java-15-openjdk-15.0.6.0-1.1 on GA media

Description of the patch: These are all security issues fixed in the java-15-openjdk-15.0.6.0-1.1 package on the GA media of openSUSE Tumbleweed.

Patchnames: openSUSE-Tumbleweed-2024-11799

Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).

CVE-2022-21248

3.7 (Low)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

Affected products

Recommended 32 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2022-21277

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 32 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21282

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Affected products

Recommended 32 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21283

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 32 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21291

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Affected products

Recommended 32 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21293

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 32 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21294

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 32 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21296

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Affected products

Recommended 32 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21299

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 32 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21305

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Affected products

Recommended 32 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21340

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 32 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21341

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 32 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21360

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 32 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21365

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 32 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21366

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 32 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

References

62 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/o…	self
https://www.suse.com/security/cve/CVE-2022-21248/	self
https://www.suse.com/security/cve/CVE-2022-21277/	self
https://www.suse.com/security/cve/CVE-2022-21282/	self
https://www.suse.com/security/cve/CVE-2022-21283/	self
https://www.suse.com/security/cve/CVE-2022-21291/	self
https://www.suse.com/security/cve/CVE-2022-21293/	self
https://www.suse.com/security/cve/CVE-2022-21294/	self
https://www.suse.com/security/cve/CVE-2022-21296/	self
https://www.suse.com/security/cve/CVE-2022-21299/	self
https://www.suse.com/security/cve/CVE-2022-21305/	self
https://www.suse.com/security/cve/CVE-2022-21340/	self
https://www.suse.com/security/cve/CVE-2022-21341/	self
https://www.suse.com/security/cve/CVE-2022-21360/	self
https://www.suse.com/security/cve/CVE-2022-21365/	self
https://www.suse.com/security/cve/CVE-2022-21366/	self
https://www.suse.com/security/cve/CVE-2022-21248	external
https://bugzilla.suse.com/1194926	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21277	external
https://bugzilla.suse.com/1194930	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21282	external
https://bugzilla.suse.com/1194933	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21283	external
https://bugzilla.suse.com/1194937	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21291	external
https://bugzilla.suse.com/1194925	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21293	external
https://bugzilla.suse.com/1194935	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21294	external
https://bugzilla.suse.com/1194934	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21296	external
https://bugzilla.suse.com/1194932	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21299	external
https://bugzilla.suse.com/1194931	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21305	external
https://bugzilla.suse.com/1194939	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21340	external
https://bugzilla.suse.com/1194940	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21341	external
https://bugzilla.suse.com/1194941	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21360	external
https://bugzilla.suse.com/1194929	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21365	external
https://bugzilla.suse.com/1194928	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21366	external
https://bugzilla.suse.com/1194927	external
https://bugzilla.suse.com/1197126	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "java-15-openjdk-15.0.6.0-1.1 on GA media",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "These are all security issues fixed in the java-15-openjdk-15.0.6.0-1.1 package on the GA media of openSUSE Tumbleweed.",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "openSUSE-Tumbleweed-2024-11799",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_11799-1.json"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21248 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21248/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21277 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21277/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21282 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21282/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21283 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21283/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21291 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21291/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21293 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21293/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21294 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21294/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21296 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21296/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21299 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21299/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21305 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21305/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21340 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21340/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21341 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21341/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21360 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21360/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21365 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21365/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21366 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21366/"
      }
    ],
    "title": "java-15-openjdk-15.0.6.0-1.1 on GA media",
    "tracking": {
      "current_release_date": "2024-06-15T00:00:00Z",
      "generator": {
        "date": "2024-06-15T00:00:00Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "openSUSE-SU-2024:11799-1",
      "initial_release_date": "2024-06-15T00:00:00Z",
      "revision_history": [
        {
          "date": "2024-06-15T00:00:00Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "java-15-openjdk-15.0.6.0-1.1.aarch64",
                "product": {
                  "name": "java-15-openjdk-15.0.6.0-1.1.aarch64",
                  "product_id": "java-15-openjdk-15.0.6.0-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64",
                "product": {
                  "name": "java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64",
                  "product_id": "java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "java-15-openjdk-demo-15.0.6.0-1.1.aarch64",
                "product": {
                  "name": "java-15-openjdk-demo-15.0.6.0-1.1.aarch64",
                  "product_id": "java-15-openjdk-demo-15.0.6.0-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "java-15-openjdk-devel-15.0.6.0-1.1.aarch64",
                "product": {
                  "name": "java-15-openjdk-devel-15.0.6.0-1.1.aarch64",
                  "product_id": "java-15-openjdk-devel-15.0.6.0-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "java-15-openjdk-headless-15.0.6.0-1.1.aarch64",
                "product": {
                  "name": "java-15-openjdk-headless-15.0.6.0-1.1.aarch64",
                  "product_id": "java-15-openjdk-headless-15.0.6.0-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64",
                "product": {
                  "name": "java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64",
                  "product_id": "java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "java-15-openjdk-jmods-15.0.6.0-1.1.aarch64",
                "product": {
                  "name": "java-15-openjdk-jmods-15.0.6.0-1.1.aarch64",
                  "product_id": "java-15-openjdk-jmods-15.0.6.0-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "java-15-openjdk-src-15.0.6.0-1.1.aarch64",
                "product": {
                  "name": "java-15-openjdk-src-15.0.6.0-1.1.aarch64",
                  "product_id": "java-15-openjdk-src-15.0.6.0-1.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "java-15-openjdk-15.0.6.0-1.1.ppc64le",
                "product": {
                  "name": "java-15-openjdk-15.0.6.0-1.1.ppc64le",
                  "product_id": "java-15-openjdk-15.0.6.0-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le",
                "product": {
                  "name": "java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le",
                  "product_id": "java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "java-15-openjdk-demo-15.0.6.0-1.1.ppc64le",
                "product": {
                  "name": "java-15-openjdk-demo-15.0.6.0-1.1.ppc64le",
                  "product_id": "java-15-openjdk-demo-15.0.6.0-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "java-15-openjdk-devel-15.0.6.0-1.1.ppc64le",
                "product": {
                  "name": "java-15-openjdk-devel-15.0.6.0-1.1.ppc64le",
                  "product_id": "java-15-openjdk-devel-15.0.6.0-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "java-15-openjdk-headless-15.0.6.0-1.1.ppc64le",
                "product": {
                  "name": "java-15-openjdk-headless-15.0.6.0-1.1.ppc64le",
                  "product_id": "java-15-openjdk-headless-15.0.6.0-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le",
                "product": {
                  "name": "java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le",
                  "product_id": "java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le",
                "product": {
                  "name": "java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le",
                  "product_id": "java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "java-15-openjdk-src-15.0.6.0-1.1.ppc64le",
                "product": {
                  "name": "java-15-openjdk-src-15.0.6.0-1.1.ppc64le",
                  "product_id": "java-15-openjdk-src-15.0.6.0-1.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "java-15-openjdk-15.0.6.0-1.1.s390x",
                "product": {
                  "name": "java-15-openjdk-15.0.6.0-1.1.s390x",
                  "product_id": "java-15-openjdk-15.0.6.0-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "java-15-openjdk-accessibility-15.0.6.0-1.1.s390x",
                "product": {
                  "name": "java-15-openjdk-accessibility-15.0.6.0-1.1.s390x",
                  "product_id": "java-15-openjdk-accessibility-15.0.6.0-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "java-15-openjdk-demo-15.0.6.0-1.1.s390x",
                "product": {
                  "name": "java-15-openjdk-demo-15.0.6.0-1.1.s390x",
                  "product_id": "java-15-openjdk-demo-15.0.6.0-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "java-15-openjdk-devel-15.0.6.0-1.1.s390x",
                "product": {
                  "name": "java-15-openjdk-devel-15.0.6.0-1.1.s390x",
                  "product_id": "java-15-openjdk-devel-15.0.6.0-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "java-15-openjdk-headless-15.0.6.0-1.1.s390x",
                "product": {
                  "name": "java-15-openjdk-headless-15.0.6.0-1.1.s390x",
                  "product_id": "java-15-openjdk-headless-15.0.6.0-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "java-15-openjdk-javadoc-15.0.6.0-1.1.s390x",
                "product": {
                  "name": "java-15-openjdk-javadoc-15.0.6.0-1.1.s390x",
                  "product_id": "java-15-openjdk-javadoc-15.0.6.0-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "java-15-openjdk-jmods-15.0.6.0-1.1.s390x",
                "product": {
                  "name": "java-15-openjdk-jmods-15.0.6.0-1.1.s390x",
                  "product_id": "java-15-openjdk-jmods-15.0.6.0-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "java-15-openjdk-src-15.0.6.0-1.1.s390x",
                "product": {
                  "name": "java-15-openjdk-src-15.0.6.0-1.1.s390x",
                  "product_id": "java-15-openjdk-src-15.0.6.0-1.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "java-15-openjdk-15.0.6.0-1.1.x86_64",
                "product": {
                  "name": "java-15-openjdk-15.0.6.0-1.1.x86_64",
                  "product_id": "java-15-openjdk-15.0.6.0-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64",
                "product": {
                  "name": "java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64",
                  "product_id": "java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "java-15-openjdk-demo-15.0.6.0-1.1.x86_64",
                "product": {
                  "name": "java-15-openjdk-demo-15.0.6.0-1.1.x86_64",
                  "product_id": "java-15-openjdk-demo-15.0.6.0-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "java-15-openjdk-devel-15.0.6.0-1.1.x86_64",
                "product": {
                  "name": "java-15-openjdk-devel-15.0.6.0-1.1.x86_64",
                  "product_id": "java-15-openjdk-devel-15.0.6.0-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "java-15-openjdk-headless-15.0.6.0-1.1.x86_64",
                "product": {
                  "name": "java-15-openjdk-headless-15.0.6.0-1.1.x86_64",
                  "product_id": "java-15-openjdk-headless-15.0.6.0-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64",
                "product": {
                  "name": "java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64",
                  "product_id": "java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "java-15-openjdk-jmods-15.0.6.0-1.1.x86_64",
                "product": {
                  "name": "java-15-openjdk-jmods-15.0.6.0-1.1.x86_64",
                  "product_id": "java-15-openjdk-jmods-15.0.6.0-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "java-15-openjdk-src-15.0.6.0-1.1.x86_64",
                "product": {
                  "name": "java-15-openjdk-src-15.0.6.0-1.1.x86_64",
                  "product_id": "java-15-openjdk-src-15.0.6.0-1.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "openSUSE Tumbleweed",
                "product": {
                  "name": "openSUSE Tumbleweed",
                  "product_id": "openSUSE Tumbleweed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:tumbleweed"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-15-openjdk-15.0.6.0-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64"
        },
        "product_reference": "java-15-openjdk-15.0.6.0-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-15-openjdk-15.0.6.0-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le"
        },
        "product_reference": "java-15-openjdk-15.0.6.0-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-15-openjdk-15.0.6.0-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x"
        },
        "product_reference": "java-15-openjdk-15.0.6.0-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-15-openjdk-15.0.6.0-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64"
        },
        "product_reference": "java-15-openjdk-15.0.6.0-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64"
        },
        "product_reference": "java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le"
        },
        "product_reference": "java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-15-openjdk-accessibility-15.0.6.0-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x"
        },
        "product_reference": "java-15-openjdk-accessibility-15.0.6.0-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64"
        },
        "product_reference": "java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-15-openjdk-demo-15.0.6.0-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64"
        },
        "product_reference": "java-15-openjdk-demo-15.0.6.0-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-15-openjdk-demo-15.0.6.0-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le"
        },
        "product_reference": "java-15-openjdk-demo-15.0.6.0-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-15-openjdk-demo-15.0.6.0-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x"
        },
        "product_reference": "java-15-openjdk-demo-15.0.6.0-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-15-openjdk-demo-15.0.6.0-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64"
        },
        "product_reference": "java-15-openjdk-demo-15.0.6.0-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-15-openjdk-devel-15.0.6.0-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64"
        },
        "product_reference": "java-15-openjdk-devel-15.0.6.0-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-15-openjdk-devel-15.0.6.0-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le"
        },
        "product_reference": "java-15-openjdk-devel-15.0.6.0-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-15-openjdk-devel-15.0.6.0-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x"
        },
        "product_reference": "java-15-openjdk-devel-15.0.6.0-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-15-openjdk-devel-15.0.6.0-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64"
        },
        "product_reference": "java-15-openjdk-devel-15.0.6.0-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-15-openjdk-headless-15.0.6.0-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64"
        },
        "product_reference": "java-15-openjdk-headless-15.0.6.0-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-15-openjdk-headless-15.0.6.0-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le"
        },
        "product_reference": "java-15-openjdk-headless-15.0.6.0-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-15-openjdk-headless-15.0.6.0-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x"
        },
        "product_reference": "java-15-openjdk-headless-15.0.6.0-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-15-openjdk-headless-15.0.6.0-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64"
        },
        "product_reference": "java-15-openjdk-headless-15.0.6.0-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64"
        },
        "product_reference": "java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le"
        },
        "product_reference": "java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-15-openjdk-javadoc-15.0.6.0-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x"
        },
        "product_reference": "java-15-openjdk-javadoc-15.0.6.0-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64"
        },
        "product_reference": "java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-15-openjdk-jmods-15.0.6.0-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64"
        },
        "product_reference": "java-15-openjdk-jmods-15.0.6.0-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le"
        },
        "product_reference": "java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-15-openjdk-jmods-15.0.6.0-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x"
        },
        "product_reference": "java-15-openjdk-jmods-15.0.6.0-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-15-openjdk-jmods-15.0.6.0-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64"
        },
        "product_reference": "java-15-openjdk-jmods-15.0.6.0-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-15-openjdk-src-15.0.6.0-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64"
        },
        "product_reference": "java-15-openjdk-src-15.0.6.0-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-15-openjdk-src-15.0.6.0-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le"
        },
        "product_reference": "java-15-openjdk-src-15.0.6.0-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-15-openjdk-src-15.0.6.0-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x"
        },
        "product_reference": "java-15-openjdk-src-15.0.6.0-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-15-openjdk-src-15.0.6.0-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64"
        },
        "product_reference": "java-15-openjdk-src-15.0.6.0-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2022-21248",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21248"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Serialization). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 3.7 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21248",
          "url": "https://www.suse.com/security/cve/CVE-2022-21248"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194926 for CVE-2022-21248",
          "url": "https://bugzilla.suse.com/1194926"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21248",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.7,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "low"
        }
      ],
      "title": "CVE-2022-21248"
    },
    {
      "cve": "CVE-2022-21277",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21277"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: ImageIO). Supported versions that are affected are Oracle Java SE: 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21277",
          "url": "https://www.suse.com/security/cve/CVE-2022-21277"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194930 for CVE-2022-21277",
          "url": "https://bugzilla.suse.com/1194930"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21277",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21277"
    },
    {
      "cve": "CVE-2022-21282",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21282"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JAXP). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21282",
          "url": "https://www.suse.com/security/cve/CVE-2022-21282"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194933 for CVE-2022-21282",
          "url": "https://bugzilla.suse.com/1194933"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21282",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21282"
    },
    {
      "cve": "CVE-2022-21283",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21283"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21283",
          "url": "https://www.suse.com/security/cve/CVE-2022-21283"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194937 for CVE-2022-21283",
          "url": "https://bugzilla.suse.com/1194937"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21283",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21283"
    },
    {
      "cve": "CVE-2022-21291",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21291"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21291",
          "url": "https://www.suse.com/security/cve/CVE-2022-21291"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194925 for CVE-2022-21291",
          "url": "https://bugzilla.suse.com/1194925"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21291",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21291"
    },
    {
      "cve": "CVE-2022-21293",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21293"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21293",
          "url": "https://www.suse.com/security/cve/CVE-2022-21293"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194935 for CVE-2022-21293",
          "url": "https://bugzilla.suse.com/1194935"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21293",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21293"
    },
    {
      "cve": "CVE-2022-21294",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21294"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21294",
          "url": "https://www.suse.com/security/cve/CVE-2022-21294"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194934 for CVE-2022-21294",
          "url": "https://bugzilla.suse.com/1194934"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21294",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21294"
    },
    {
      "cve": "CVE-2022-21296",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21296"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JAXP). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21296",
          "url": "https://www.suse.com/security/cve/CVE-2022-21296"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194932 for CVE-2022-21296",
          "url": "https://bugzilla.suse.com/1194932"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21296",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21296"
    },
    {
      "cve": "CVE-2022-21299",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21299"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JAXP). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21299",
          "url": "https://www.suse.com/security/cve/CVE-2022-21299"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194931 for CVE-2022-21299",
          "url": "https://bugzilla.suse.com/1194931"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21299",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21299"
    },
    {
      "cve": "CVE-2022-21305",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21305"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21305",
          "url": "https://www.suse.com/security/cve/CVE-2022-21305"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194939 for CVE-2022-21305",
          "url": "https://bugzilla.suse.com/1194939"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21305",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21305"
    },
    {
      "cve": "CVE-2022-21340",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21340"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21340",
          "url": "https://www.suse.com/security/cve/CVE-2022-21340"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194940 for CVE-2022-21340",
          "url": "https://bugzilla.suse.com/1194940"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21340",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21340"
    },
    {
      "cve": "CVE-2022-21341",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21341"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Serialization). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21341",
          "url": "https://www.suse.com/security/cve/CVE-2022-21341"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194941 for CVE-2022-21341",
          "url": "https://bugzilla.suse.com/1194941"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21341",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21341"
    },
    {
      "cve": "CVE-2022-21360",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21360"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: ImageIO). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21360",
          "url": "https://www.suse.com/security/cve/CVE-2022-21360"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194929 for CVE-2022-21360",
          "url": "https://bugzilla.suse.com/1194929"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21360",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21360"
    },
    {
      "cve": "CVE-2022-21365",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21365"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: ImageIO). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21365",
          "url": "https://www.suse.com/security/cve/CVE-2022-21365"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194928 for CVE-2022-21365",
          "url": "https://bugzilla.suse.com/1194928"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21365",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21365"
    },
    {
      "cve": "CVE-2022-21366",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21366"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: ImageIO). Supported versions that are affected are Oracle Java SE: 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x",
          "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21366",
          "url": "https://www.suse.com/security/cve/CVE-2022-21366"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194927 for CVE-2022-21366",
          "url": "https://bugzilla.suse.com/1194927"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21366",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-accessibility-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-demo-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-devel-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-headless-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-javadoc-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-jmods-15.0.6.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.s390x",
            "openSUSE Tumbleweed:java-15-openjdk-src-15.0.6.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21366"
    }
  ]
}

OPENSUSE-SU-2024:11800-1

Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00

Summary

java-17-openjdk-17.0.2.0-1.1 on GA media

Severity

Moderate

Notes

Title of the patch: java-17-openjdk-17.0.2.0-1.1 on GA media

Description of the patch: These are all security issues fixed in the java-17-openjdk-17.0.2.0-1.1 package on the GA media of openSUSE Tumbleweed.

Patchnames: openSUSE-Tumbleweed-2024-11800

Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).

CVE-2022-21248

3.7 (Low)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

Affected products

Recommended 32 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2022-21277

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 32 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21282

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Affected products

Recommended 32 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21283

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 32 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21291

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Affected products

Recommended 32 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21293

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 32 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21294

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 32 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21296

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Affected products

Recommended 32 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21299

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 32 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21305

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Affected products

Recommended 32 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21340

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 32 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21341

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 32 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21360

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 32 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21365

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 32 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21366

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 32 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

References

62 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/o…	self
https://www.suse.com/security/cve/CVE-2022-21248/	self
https://www.suse.com/security/cve/CVE-2022-21277/	self
https://www.suse.com/security/cve/CVE-2022-21282/	self
https://www.suse.com/security/cve/CVE-2022-21283/	self
https://www.suse.com/security/cve/CVE-2022-21291/	self
https://www.suse.com/security/cve/CVE-2022-21293/	self
https://www.suse.com/security/cve/CVE-2022-21294/	self
https://www.suse.com/security/cve/CVE-2022-21296/	self
https://www.suse.com/security/cve/CVE-2022-21299/	self
https://www.suse.com/security/cve/CVE-2022-21305/	self
https://www.suse.com/security/cve/CVE-2022-21340/	self
https://www.suse.com/security/cve/CVE-2022-21341/	self
https://www.suse.com/security/cve/CVE-2022-21360/	self
https://www.suse.com/security/cve/CVE-2022-21365/	self
https://www.suse.com/security/cve/CVE-2022-21366/	self
https://www.suse.com/security/cve/CVE-2022-21248	external
https://bugzilla.suse.com/1194926	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21277	external
https://bugzilla.suse.com/1194930	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21282	external
https://bugzilla.suse.com/1194933	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21283	external
https://bugzilla.suse.com/1194937	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21291	external
https://bugzilla.suse.com/1194925	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21293	external
https://bugzilla.suse.com/1194935	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21294	external
https://bugzilla.suse.com/1194934	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21296	external
https://bugzilla.suse.com/1194932	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21299	external
https://bugzilla.suse.com/1194931	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21305	external
https://bugzilla.suse.com/1194939	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21340	external
https://bugzilla.suse.com/1194940	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21341	external
https://bugzilla.suse.com/1194941	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21360	external
https://bugzilla.suse.com/1194929	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21365	external
https://bugzilla.suse.com/1194928	external
https://bugzilla.suse.com/1197126	external
https://www.suse.com/security/cve/CVE-2022-21366	external
https://bugzilla.suse.com/1194927	external
https://bugzilla.suse.com/1197126	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "java-17-openjdk-17.0.2.0-1.1 on GA media",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "These are all security issues fixed in the java-17-openjdk-17.0.2.0-1.1 package on the GA media of openSUSE Tumbleweed.",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "openSUSE-Tumbleweed-2024-11800",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_11800-1.json"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21248 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21248/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21277 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21277/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21282 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21282/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21283 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21283/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21291 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21291/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21293 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21293/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21294 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21294/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21296 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21296/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21299 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21299/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21305 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21305/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21340 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21340/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21341 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21341/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21360 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21360/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21365 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21365/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21366 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21366/"
      }
    ],
    "title": "java-17-openjdk-17.0.2.0-1.1 on GA media",
    "tracking": {
      "current_release_date": "2024-06-15T00:00:00Z",
      "generator": {
        "date": "2024-06-15T00:00:00Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "openSUSE-SU-2024:11800-1",
      "initial_release_date": "2024-06-15T00:00:00Z",
      "revision_history": [
        {
          "date": "2024-06-15T00:00:00Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "java-17-openjdk-17.0.2.0-1.1.aarch64",
                "product": {
                  "name": "java-17-openjdk-17.0.2.0-1.1.aarch64",
                  "product_id": "java-17-openjdk-17.0.2.0-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64",
                "product": {
                  "name": "java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64",
                  "product_id": "java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "java-17-openjdk-demo-17.0.2.0-1.1.aarch64",
                "product": {
                  "name": "java-17-openjdk-demo-17.0.2.0-1.1.aarch64",
                  "product_id": "java-17-openjdk-demo-17.0.2.0-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "java-17-openjdk-devel-17.0.2.0-1.1.aarch64",
                "product": {
                  "name": "java-17-openjdk-devel-17.0.2.0-1.1.aarch64",
                  "product_id": "java-17-openjdk-devel-17.0.2.0-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "java-17-openjdk-headless-17.0.2.0-1.1.aarch64",
                "product": {
                  "name": "java-17-openjdk-headless-17.0.2.0-1.1.aarch64",
                  "product_id": "java-17-openjdk-headless-17.0.2.0-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64",
                "product": {
                  "name": "java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64",
                  "product_id": "java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "java-17-openjdk-jmods-17.0.2.0-1.1.aarch64",
                "product": {
                  "name": "java-17-openjdk-jmods-17.0.2.0-1.1.aarch64",
                  "product_id": "java-17-openjdk-jmods-17.0.2.0-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "java-17-openjdk-src-17.0.2.0-1.1.aarch64",
                "product": {
                  "name": "java-17-openjdk-src-17.0.2.0-1.1.aarch64",
                  "product_id": "java-17-openjdk-src-17.0.2.0-1.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "java-17-openjdk-17.0.2.0-1.1.ppc64le",
                "product": {
                  "name": "java-17-openjdk-17.0.2.0-1.1.ppc64le",
                  "product_id": "java-17-openjdk-17.0.2.0-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le",
                "product": {
                  "name": "java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le",
                  "product_id": "java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "java-17-openjdk-demo-17.0.2.0-1.1.ppc64le",
                "product": {
                  "name": "java-17-openjdk-demo-17.0.2.0-1.1.ppc64le",
                  "product_id": "java-17-openjdk-demo-17.0.2.0-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "java-17-openjdk-devel-17.0.2.0-1.1.ppc64le",
                "product": {
                  "name": "java-17-openjdk-devel-17.0.2.0-1.1.ppc64le",
                  "product_id": "java-17-openjdk-devel-17.0.2.0-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "java-17-openjdk-headless-17.0.2.0-1.1.ppc64le",
                "product": {
                  "name": "java-17-openjdk-headless-17.0.2.0-1.1.ppc64le",
                  "product_id": "java-17-openjdk-headless-17.0.2.0-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le",
                "product": {
                  "name": "java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le",
                  "product_id": "java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le",
                "product": {
                  "name": "java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le",
                  "product_id": "java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "java-17-openjdk-src-17.0.2.0-1.1.ppc64le",
                "product": {
                  "name": "java-17-openjdk-src-17.0.2.0-1.1.ppc64le",
                  "product_id": "java-17-openjdk-src-17.0.2.0-1.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "java-17-openjdk-17.0.2.0-1.1.s390x",
                "product": {
                  "name": "java-17-openjdk-17.0.2.0-1.1.s390x",
                  "product_id": "java-17-openjdk-17.0.2.0-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "java-17-openjdk-accessibility-17.0.2.0-1.1.s390x",
                "product": {
                  "name": "java-17-openjdk-accessibility-17.0.2.0-1.1.s390x",
                  "product_id": "java-17-openjdk-accessibility-17.0.2.0-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "java-17-openjdk-demo-17.0.2.0-1.1.s390x",
                "product": {
                  "name": "java-17-openjdk-demo-17.0.2.0-1.1.s390x",
                  "product_id": "java-17-openjdk-demo-17.0.2.0-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "java-17-openjdk-devel-17.0.2.0-1.1.s390x",
                "product": {
                  "name": "java-17-openjdk-devel-17.0.2.0-1.1.s390x",
                  "product_id": "java-17-openjdk-devel-17.0.2.0-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "java-17-openjdk-headless-17.0.2.0-1.1.s390x",
                "product": {
                  "name": "java-17-openjdk-headless-17.0.2.0-1.1.s390x",
                  "product_id": "java-17-openjdk-headless-17.0.2.0-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "java-17-openjdk-javadoc-17.0.2.0-1.1.s390x",
                "product": {
                  "name": "java-17-openjdk-javadoc-17.0.2.0-1.1.s390x",
                  "product_id": "java-17-openjdk-javadoc-17.0.2.0-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "java-17-openjdk-jmods-17.0.2.0-1.1.s390x",
                "product": {
                  "name": "java-17-openjdk-jmods-17.0.2.0-1.1.s390x",
                  "product_id": "java-17-openjdk-jmods-17.0.2.0-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "java-17-openjdk-src-17.0.2.0-1.1.s390x",
                "product": {
                  "name": "java-17-openjdk-src-17.0.2.0-1.1.s390x",
                  "product_id": "java-17-openjdk-src-17.0.2.0-1.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "java-17-openjdk-17.0.2.0-1.1.x86_64",
                "product": {
                  "name": "java-17-openjdk-17.0.2.0-1.1.x86_64",
                  "product_id": "java-17-openjdk-17.0.2.0-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64",
                "product": {
                  "name": "java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64",
                  "product_id": "java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "java-17-openjdk-demo-17.0.2.0-1.1.x86_64",
                "product": {
                  "name": "java-17-openjdk-demo-17.0.2.0-1.1.x86_64",
                  "product_id": "java-17-openjdk-demo-17.0.2.0-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "java-17-openjdk-devel-17.0.2.0-1.1.x86_64",
                "product": {
                  "name": "java-17-openjdk-devel-17.0.2.0-1.1.x86_64",
                  "product_id": "java-17-openjdk-devel-17.0.2.0-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "java-17-openjdk-headless-17.0.2.0-1.1.x86_64",
                "product": {
                  "name": "java-17-openjdk-headless-17.0.2.0-1.1.x86_64",
                  "product_id": "java-17-openjdk-headless-17.0.2.0-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64",
                "product": {
                  "name": "java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64",
                  "product_id": "java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "java-17-openjdk-jmods-17.0.2.0-1.1.x86_64",
                "product": {
                  "name": "java-17-openjdk-jmods-17.0.2.0-1.1.x86_64",
                  "product_id": "java-17-openjdk-jmods-17.0.2.0-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "java-17-openjdk-src-17.0.2.0-1.1.x86_64",
                "product": {
                  "name": "java-17-openjdk-src-17.0.2.0-1.1.x86_64",
                  "product_id": "java-17-openjdk-src-17.0.2.0-1.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "openSUSE Tumbleweed",
                "product": {
                  "name": "openSUSE Tumbleweed",
                  "product_id": "openSUSE Tumbleweed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:tumbleweed"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-17.0.2.0-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64"
        },
        "product_reference": "java-17-openjdk-17.0.2.0-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-17.0.2.0-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le"
        },
        "product_reference": "java-17-openjdk-17.0.2.0-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-17.0.2.0-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x"
        },
        "product_reference": "java-17-openjdk-17.0.2.0-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-17.0.2.0-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64"
        },
        "product_reference": "java-17-openjdk-17.0.2.0-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64"
        },
        "product_reference": "java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le"
        },
        "product_reference": "java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-accessibility-17.0.2.0-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x"
        },
        "product_reference": "java-17-openjdk-accessibility-17.0.2.0-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64"
        },
        "product_reference": "java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-demo-17.0.2.0-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64"
        },
        "product_reference": "java-17-openjdk-demo-17.0.2.0-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-demo-17.0.2.0-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le"
        },
        "product_reference": "java-17-openjdk-demo-17.0.2.0-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-demo-17.0.2.0-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x"
        },
        "product_reference": "java-17-openjdk-demo-17.0.2.0-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-demo-17.0.2.0-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64"
        },
        "product_reference": "java-17-openjdk-demo-17.0.2.0-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-devel-17.0.2.0-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64"
        },
        "product_reference": "java-17-openjdk-devel-17.0.2.0-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-devel-17.0.2.0-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le"
        },
        "product_reference": "java-17-openjdk-devel-17.0.2.0-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-devel-17.0.2.0-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x"
        },
        "product_reference": "java-17-openjdk-devel-17.0.2.0-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-devel-17.0.2.0-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64"
        },
        "product_reference": "java-17-openjdk-devel-17.0.2.0-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-headless-17.0.2.0-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64"
        },
        "product_reference": "java-17-openjdk-headless-17.0.2.0-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-headless-17.0.2.0-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le"
        },
        "product_reference": "java-17-openjdk-headless-17.0.2.0-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-headless-17.0.2.0-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x"
        },
        "product_reference": "java-17-openjdk-headless-17.0.2.0-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-headless-17.0.2.0-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64"
        },
        "product_reference": "java-17-openjdk-headless-17.0.2.0-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64"
        },
        "product_reference": "java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le"
        },
        "product_reference": "java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-javadoc-17.0.2.0-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x"
        },
        "product_reference": "java-17-openjdk-javadoc-17.0.2.0-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64"
        },
        "product_reference": "java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-jmods-17.0.2.0-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64"
        },
        "product_reference": "java-17-openjdk-jmods-17.0.2.0-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le"
        },
        "product_reference": "java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-jmods-17.0.2.0-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x"
        },
        "product_reference": "java-17-openjdk-jmods-17.0.2.0-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-jmods-17.0.2.0-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64"
        },
        "product_reference": "java-17-openjdk-jmods-17.0.2.0-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-src-17.0.2.0-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64"
        },
        "product_reference": "java-17-openjdk-src-17.0.2.0-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-src-17.0.2.0-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le"
        },
        "product_reference": "java-17-openjdk-src-17.0.2.0-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-src-17.0.2.0-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x"
        },
        "product_reference": "java-17-openjdk-src-17.0.2.0-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-src-17.0.2.0-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64"
        },
        "product_reference": "java-17-openjdk-src-17.0.2.0-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2022-21248",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21248"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Serialization). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 3.7 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21248",
          "url": "https://www.suse.com/security/cve/CVE-2022-21248"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194926 for CVE-2022-21248",
          "url": "https://bugzilla.suse.com/1194926"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21248",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.7,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "low"
        }
      ],
      "title": "CVE-2022-21248"
    },
    {
      "cve": "CVE-2022-21277",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21277"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: ImageIO). Supported versions that are affected are Oracle Java SE: 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21277",
          "url": "https://www.suse.com/security/cve/CVE-2022-21277"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194930 for CVE-2022-21277",
          "url": "https://bugzilla.suse.com/1194930"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21277",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21277"
    },
    {
      "cve": "CVE-2022-21282",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21282"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JAXP). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21282",
          "url": "https://www.suse.com/security/cve/CVE-2022-21282"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194933 for CVE-2022-21282",
          "url": "https://bugzilla.suse.com/1194933"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21282",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21282"
    },
    {
      "cve": "CVE-2022-21283",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21283"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21283",
          "url": "https://www.suse.com/security/cve/CVE-2022-21283"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194937 for CVE-2022-21283",
          "url": "https://bugzilla.suse.com/1194937"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21283",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21283"
    },
    {
      "cve": "CVE-2022-21291",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21291"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21291",
          "url": "https://www.suse.com/security/cve/CVE-2022-21291"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194925 for CVE-2022-21291",
          "url": "https://bugzilla.suse.com/1194925"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21291",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21291"
    },
    {
      "cve": "CVE-2022-21293",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21293"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21293",
          "url": "https://www.suse.com/security/cve/CVE-2022-21293"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194935 for CVE-2022-21293",
          "url": "https://bugzilla.suse.com/1194935"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21293",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21293"
    },
    {
      "cve": "CVE-2022-21294",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21294"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21294",
          "url": "https://www.suse.com/security/cve/CVE-2022-21294"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194934 for CVE-2022-21294",
          "url": "https://bugzilla.suse.com/1194934"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21294",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21294"
    },
    {
      "cve": "CVE-2022-21296",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21296"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JAXP). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21296",
          "url": "https://www.suse.com/security/cve/CVE-2022-21296"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194932 for CVE-2022-21296",
          "url": "https://bugzilla.suse.com/1194932"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21296",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21296"
    },
    {
      "cve": "CVE-2022-21299",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21299"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JAXP). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21299",
          "url": "https://www.suse.com/security/cve/CVE-2022-21299"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194931 for CVE-2022-21299",
          "url": "https://bugzilla.suse.com/1194931"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21299",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21299"
    },
    {
      "cve": "CVE-2022-21305",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21305"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21305",
          "url": "https://www.suse.com/security/cve/CVE-2022-21305"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194939 for CVE-2022-21305",
          "url": "https://bugzilla.suse.com/1194939"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21305",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21305"
    },
    {
      "cve": "CVE-2022-21340",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21340"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21340",
          "url": "https://www.suse.com/security/cve/CVE-2022-21340"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194940 for CVE-2022-21340",
          "url": "https://bugzilla.suse.com/1194940"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21340",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21340"
    },
    {
      "cve": "CVE-2022-21341",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21341"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Serialization). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21341",
          "url": "https://www.suse.com/security/cve/CVE-2022-21341"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194941 for CVE-2022-21341",
          "url": "https://bugzilla.suse.com/1194941"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21341",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21341"
    },
    {
      "cve": "CVE-2022-21360",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21360"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: ImageIO). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21360",
          "url": "https://www.suse.com/security/cve/CVE-2022-21360"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194929 for CVE-2022-21360",
          "url": "https://bugzilla.suse.com/1194929"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21360",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21360"
    },
    {
      "cve": "CVE-2022-21365",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21365"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: ImageIO). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21365",
          "url": "https://www.suse.com/security/cve/CVE-2022-21365"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194928 for CVE-2022-21365",
          "url": "https://bugzilla.suse.com/1194928"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21365",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21365"
    },
    {
      "cve": "CVE-2022-21366",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21366"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: ImageIO). Supported versions that are affected are Oracle Java SE: 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x",
          "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21366",
          "url": "https://www.suse.com/security/cve/CVE-2022-21366"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194927 for CVE-2022-21366",
          "url": "https://bugzilla.suse.com/1194927"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197126 for CVE-2022-21366",
          "url": "https://bugzilla.suse.com/1197126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-accessibility-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-demo-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-devel-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-headless-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-javadoc-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-jmods-17.0.2.0-1.1.x86_64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.aarch64",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.ppc64le",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.s390x",
            "openSUSE Tumbleweed:java-17-openjdk-src-17.0.2.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21366"
    }
  ]
}

CVE-2022-21277 (GCVE-0-2022-21277)

Tags

Sightings

Nomenclature

Action not permitted

CVE-2022-21277 (GCVE-0-2022-21277)

Solution

Tags

Sightings

Nomenclature