vulnerability

SUSE: CVE-2020-27221: SUSE Linux Security Advisory

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
8	(AV:N/AC:L/Au:N/C:P/I:P/A:P)	Jan 21, 2021	Feb 19, 2021	Jul 17, 2021

Severity

CVSS

(AV:N/AC:L/Au:N/C:P/I:P/A:P)

Published

Jan 21, 2021

Added

Feb 19, 2021

Modified

Jul 17, 2021

Description

In Eclipse OpenJ9 up to and including version 0.23, there is potential for a stack-based buffer overflow when the virtual machine or JNI natives are converting from UTF-8 characters to platform encoding.

Solutions

suse-upgrade-java-1_7_1-ibmsuse-upgrade-java-1_7_1-ibm-alsasuse-upgrade-java-1_7_1-ibm-develsuse-upgrade-java-1_7_1-ibm-jdbcsuse-upgrade-java-1_7_1-ibm-pluginsuse-upgrade-java-1_8_0-ibmsuse-upgrade-java-1_8_0-ibm-alsasuse-upgrade-java-1_8_0-ibm-develsuse-upgrade-java-1_8_0-ibm-plugin

References

SUSE-SUSE-SU-2021:0512-1
SUSE-SUSE-SU-2021:0652-1
SUSE-SUSE-SU-2021:0670-1
SUSE-SUSE-SU-2021:14634-1
SUSE-SUSE-SU-2021:14640-1
NVD-CVE-2020-27221

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report