Debian Security Advisory

DSA-4410-1 openjdk-8 -- security update

Date Reported:
20 Mar 2019
Affected Packages:
Security database references:
In Mitre's CVE dictionary: CVE-2019-2422.
More information:

A memory disclosure vulnerability was discovered in OpenJDK, an implementation of the Oracle Java platform, resulting in information disclosure or bypass of sandbox restrictions.

For the stable distribution (stretch), this problem has been fixed in version 8u212-b01-1~deb9u1.

We recommend that you upgrade your openjdk-8 packages.

For the detailed security status of openjdk-8 please refer to its security tracker page at: