3.7 Low
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N
4.7 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
20.8%
Debian LTS Advisory DLA-3793-1 [email protected]
https://www.debian.org/lts/security/ Emilio Pozuelo Monfort
April 22, 2024 https://wiki.debian.org/LTS
Package : openjdk-11
Version : 11.0.23+9-1~deb10u1
CVE ID : CVE-2024-21011 CVE-2024-21012 CVE-2024-21068 CVE-2024-21085
CVE-2024-21094
Several vulnerabilities have been discovered in the OpenJDK Java runtime,
which may result in denial of service or information disclosure.
For Debian 10 buster, these problems have been fixed in version
11.0.23+9-1~deb10u1.
We recommend that you upgrade your openjdk-11 packages.
For the detailed security status of openjdk-11 please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/openjdk-11
Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 10 | all | openjdk-11-doc | < 11.0.23+9-1~deb10u1 | openjdk-11-doc_11.0.23+9-1~deb10u1_all.deb |
Debian | 10 | armhf | openjdk-11-demo | < 11.0.23+9-1~deb10u1 | openjdk-11-demo_11.0.23+9-1~deb10u1_armhf.deb |
Debian | 10 | amd64 | openjdk-11-jre | < 11.0.23+9-1~deb10u1 | openjdk-11-jre_11.0.23+9-1~deb10u1_amd64.deb |
Debian | 11 | s390x | openjdk-11-jre-zero | < 11.0.23+9-1~deb11u1 | openjdk-11-jre-zero_11.0.23+9-1~deb11u1_s390x.deb |
Debian | 10 | i386 | openjdk-11-jre | < 11.0.23+9-1~deb10u1 | openjdk-11-jre_11.0.23+9-1~deb10u1_i386.deb |
Debian | 10 | armhf | openjdk-11-jdk | < 11.0.23+9-1~deb10u1 | openjdk-11-jdk_11.0.23+9-1~deb10u1_armhf.deb |
Debian | 10 | i386 | openjdk-11-jre-zero | < 11.0.23+9-1~deb10u1 | openjdk-11-jre-zero_11.0.23+9-1~deb10u1_i386.deb |
Debian | 11 | arm64 | openjdk-11-jdk | < 11.0.23+9-1~deb11u1 | openjdk-11-jdk_11.0.23+9-1~deb11u1_arm64.deb |
Debian | 11 | ppc64el | openjdk-11-jre-headless | < 11.0.23+9-1~deb11u1 | openjdk-11-jre-headless_11.0.23+9-1~deb11u1_ppc64el.deb |
Debian | 11 | i386 | openjdk-11-demo | < 11.0.23+9-1~deb11u1 | openjdk-11-demo_11.0.23+9-1~deb11u1_i386.deb |
3.7 Low
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N
4.7 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
20.8%