vulnerability

SUSE: CVE-2021-41041: SUSE Linux Security Advisory

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:N/AC:L/Au:N/C:N/I:P/A:N)	Apr 27, 2022	Oct 26, 2022	Oct 26, 2022

Severity

CVSS

(AV:N/AC:L/Au:N/C:N/I:P/A:N)

Published

Apr 27, 2022

Added

Oct 26, 2022

Modified

Oct 26, 2022

Description

In Eclipse Openj9 before version 0.32.0, Java 8 & 11 fail to throw the exception captured during bytecode verification when verification is triggered by a MethodHandle invocation, allowing unverified methods to be invoked using MethodHandles.

Solution(s)

suse-upgrade-java-1_8_0-openj9suse-upgrade-java-1_8_0-openj9-accessibilitysuse-upgrade-java-1_8_0-openj9-demosuse-upgrade-java-1_8_0-openj9-develsuse-upgrade-java-1_8_0-openj9-headlesssuse-upgrade-java-1_8_0-openj9-javadocsuse-upgrade-java-1_8_0-openj9-src

References

CVE-2021-41041
https://attackerkb.com/topics/CVE-2021-41041

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today