This bug was fixed in the package openjdk-13 - 13.0.7+5-0ubuntu1~20.10
---------------
openjdk-13 (13.0.7+5-0ubuntu1~20.10) groovy-proposed; urgency=medium
* SRU: LP: #1888386. April 2021 security updates.
openjdk-13 (13.0.7+5-0ubuntu1) hirsute; urgency=medium
* OpenJDK 13.0.7 release, build 5.
* Security fixes:
- JDK-8244473: Contextualize registration for JNDI.
- JDK-8244543: Enhanced handling of abstract classes.
- JDK-8259633: compiler/graalunit/CoreTest.java fails with NPE
after JDK-8244543.
- JDK-8250568: Less ambiguous processing (CVE-2021-2161).
- JDK-8253799: Make lists of normal filenames.
- JDK-8261183: Follow on to Make lists of normal filenames.
- JDK-8249906: Enhance opening JARs (CVE-2021-2163).
- JDK-8258247: Couple of issues in fix for JDK-8249906.
- JDK-8259428: AlgorithmId.getEncodedParams() should return copy.
- JDK-8257001: Improve HTTP client support.
-- Matthias Klose <d...@ubuntu.com> Wed, 21 Apr 2021 07:36:19 +0200
** Changed in: openjdk-13 (Ubuntu Groovy)
Status: Fix Committed => Fix Released
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2021-2161
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2021-2163
** Changed in: openjdk-13 (Ubuntu Focal)
Status: Fix Committed => Fix Released
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1888386
Title:
SRU: backport the openjdk-13 and -14 security releases to focal
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/openjdk-13/+bug/1888386/+subscriptions
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
