OpenJDK DoS, Info Disclosure Vulns Fixed
1 min read
Jun 22, 2023
Several important denial of service (DoS) and information disclosure vulnerabilities have been discovered in the OpenJDK Java runtime. These bugs require no privileges or user interaction to exploit, and have been classified by the National Vulnerability Database as having a high confidentiality, integrity and availability impact on affected systems.
These issues could result in the compromise of sensitive information, loss of access to impacted systems, or bypass of sandbox restrictions.
An OpenJDK security update has been released that mitigates these flaws. We strongly recommend that all impacted users apply the OpenJDK updates issued by their distro(s) now to protect against attacks threatening the confidentiality, integrity and availability of their systems and their sensitive data.
To stay on top of important updates released by the open-source programs and applications you use, be sure to register as a LinuxSecurity user, then subscribe to our Linux Advisory Watch newsletter and customize your advisories for the distro(s) you use. This will enable you to stay up-to-date on the latest, most significant issues impacting the security of your systems.
Follow @LS_Advisories on Twitter for real-time updates on advisories for your distro(s).
Related Articles
1 - 0 min read
Spectre V2: A New Threat to Linux Systems
1 - 0 min read
Hacked VMs Reveal New Attack Risks
1 - 0 min read
Linux xz/liblzma Utility Backdoor Risks SSH Compromise
