csaf_suse - suse-su-2023:3023-1

suse-su-2023:3023-1

Vulnerability from csaf_suse

Published

2023-07-28 20:00

Modified

2023-07-28 20:00

Summary

Security update for java-17-openjdk

Notes

Title of the patch

Security update for java-17-openjdk

Description of the patch

This update for java-17-openjdk fixes the following issues: Updated to version jdk-17.0.8+7 (July 2023 CPU): - CVE-2023-22006: Fixed vulnerability in the network component (bsc#1213473). - CVE-2023-22036: Fixed vulnerability in the utility component (bsc#1213474). - CVE-2023-22041: Fixed vulnerability in the hotspot component (bsc#1213475). - CVE-2023-22044: Fixed vulnerability in the hotspot component (bsc#1213479). - CVE-2023-22045: Fixed vulnerability in the hotspot component (bsc#1213481). - CVE-2023-22049: Fixed vulnerability in the libraries component (bsc#1213482). - CVE-2023-25193: Fixed vulnerability in the embedded harfbuzz module (bsc#1207922). - JDK-8294323: Improve Shared Class Data - JDK-8296565: Enhanced archival support - JDK-8298676, JDK-8300891: Enhanced Look and Feel - JDK-8300285: Enhance TLS data handling - JDK-8300596: Enhance Jar Signature validation - JDK-8301998, JDK-8302084: Update HarfBuzz to 7.0.1 - JDK-8302475: Enhance HTTP client file downloading - JDK-8302483: Enhance ZIP performance - JDK-8303376: Better launching of JDI - JDK-8304460: Improve array usages - JDK-8304468: Better array usages - JDK-8305312: Enhanced path handling - JDK-8308682: Enhance AES performance Bugfixes: - JDK-8178806: Better exception logging in crypto code - JDK-8201516: DebugNonSafepoints generates incorrect information - JDK-8224768: Test ActalisCA.java fails - JDK-8227060: Optimize safepoint cleanup subtask order - JDK-8227257: javax/swing/JFileChooser/4847375/bug4847375.java fails with AssertionError - JDK-8238274: (sctp) JDK-7118373 is not fixed for SctpChannel - JDK-8244976: vmTestbase/nsk/jdi/Event/request/request001.java doesn' initialize eName - JDK-8245877: assert(_value != __null) failed: resolving NULL _value in JvmtiExport::post_compiled_method_load - JDK-8248001: javadoc generates invalid HTML pages whose ftp:// links are broken - JDK-8252990: Intrinsify Unsafe.storeStoreFence - JDK-8254711: Add java.security.Provider.getService JFR Event - JDK-8257856: Make ClassFileVersionsTest.java robust to JDK version updates - JDK-8261495: Shenandoah: reconsider update references memory ordering - JDK-8268288: jdk/jfr/api/consumer/streaming/ /TestOutOfProcessMigration.java fails with 'Error: ShouldNotReachHere()' - JDK-8268298: jdk/jfr/api/consumer/log/TestVerbosity.java fails: unexpected log message - JDK-8268582: javadoc throws NPE with --ignore-source-errors option - JDK-8269821: Remove is-queue-active check in inner loop of write_ref_array_pre_work - JDK-8270434: JDI+UT: Unexpected event in JDI tests - JDK-8270859: Post JEP 411 refactoring: client libs with maximum covering > 10K - JDK-8270869: G1ServiceThread may not terminate - JDK-8271519: java/awt/event/SequencedEvent/ /MultipleContextsFunctionalTest.java failed with 'Total [200] - Expected [400]' - JDK-8273909: vmTestbase/nsk/jdi/Event/request/request001 can still fail with 'ERROR: new event is not ThreadStartEvent' - JDK-8274243: Implement fast-path for ASCII-compatible CharsetEncoders on aarch64 - JDK-8274615: Support relaxed atomic add for linux-aarch64 - JDK-8274864: Remove Amman/Cairo hacks in ZoneInfoFile - JDK-8275233: Incorrect line number reported in exception stack trace thrown from a lambda expression - JDK-8275287: Relax memory ordering constraints on updating instance class and array class counters - JDK-8275721: Name of UTC timezone in a locale changes depending on previous code - JDK-8275735: [linux] Remove deprecated Metrics api (kernel memory limit) - JDK-8276058: Some swing test fails on specific CI macos system - JDK-8277407: javax/swing/plaf/synth/SynthButtonUI/6276188/ /bug6276188.java fails to compile after JDK-8276058 - JDK-8277775: Fixup bugids in RemoveDropTargetCrashTest.java - add 4357905 - JDK-8278146: G1: Rework VM_G1Concurrent VMOp to clearly identify it as pause - JDK-8278434: timeouts in test java/time/test/java/time/ /format/TestZoneTextPrinterParser.java - JDK-8278834: Error 'Cannot read field 'sym' because 'this.lvar[od]' is null' when compiling - JDK-8282077: PKCS11 provider C_sign() impl should handle CKR_BUFFER_TOO_SMALL error - JDK-8282201: Consider removal of expiry check in VerifyCACerts.java test - JDK-8282227: Locale information for nb is not working properly - JDK-8282704: runtime/Thread/StopAtExit.java may leak memory - JDK-8283057: Update GCC to version 11.2.0 for Oracle builds on Linux - JDK-8283062: Uninitialized warnings in libgtest with GCC 11.2 - JDK-8283520: JFR: Memory leak in dcmd_arena - JDK-8283566: G1: Improve G1BarrierSet::enqueue performance - JDK-8284331: Add sanity check for signal handler modification warning. - JDK-8285635: javax/swing/JRootPane/DefaultButtonTest.java failed with Default Button not pressed for L&F: com.sun.java.swing.plaf.motif.MotifLookAndFeel - JDK-8285987: executing shell scripts without #! fails on Alpine linux - JDK-8286191: misc tests fail due to JDK-8285987 - JDK-8286287: Reading file as UTF-16 causes Error which 'shouldn't happen' - JDK-8286331: jni_GetStringUTFChars() uses wrong heap allocator - JDK-8286346: 3-parameter version of AllocateHeap should not ignore AllocFailType - JDK-8286398: Address possibly lossy conversions in jdk.internal.le - JDK-8287007: [cgroups] Consistently use stringStream throughout parsing code - JDK-8287246: DSAKeyValue should check for missing params instead of relying on KeyFactory provider - JDK-8287541: Files.writeString fails to throw IOException for charset 'windows-1252' - JDK-8287854: Dangling reference in ClassVerifier::verify_class - JDK-8287876: The recently de-problemlisted TestTitledBorderLeak test is unstable - JDK-8287897: Augment src/jdk.internal.le/share/legal/jline.md with information on 4th party dependencies - JDK-8288589: Files.readString ignores encoding errors for UTF-16 - JDK-8289509: Improve test coverage for XPath Axes: descendant, descendant-or-self, following, following-sibling - JDK-8289735: UTIL_LOOKUP_PROGS fails on pathes with space - JDK-8289949: Improve test coverage for XPath: operators - JDK-8290822: C2: assert in PhaseIdealLoop::do_unroll() is subject to undefined behavior - JDK-8291226: Create Test Cases to cover scenarios for JDK-8278067 - JDK-8291637: HttpClient default keep alive timeout not followed if server sends invalid value - JDK-8291638: Keep-Alive timeout of 0 should close connection immediately - JDK-8292206: TestCgroupMetrics.java fails as getMemoryUsage() is lower than expected - JDK-8292301: [REDO v2] C2 crash when allocating array of size too large - JDK-8292407: Improve Weak CAS VarHandle/Unsafe tests resilience under spurious failures - JDK-8292713: Unsafe.allocateInstance should be intrinsified without UseUnalignedAccesses - JDK-8292755: Non-default method in interface leads to a stack overflow in JShell - JDK-8292990: Improve test coverage for XPath Axes: parent - JDK-8293295: Add type check asserts to java_lang_ref_Reference accessors - JDK-8293492: ShenandoahControlThread missing from hs-err log and thread dump - JDK-8293858: Change PKCS7 code to use default SecureRandom impl instead of SHA1PRNG - JDK-8293887: AArch64 build failure with GCC 12 due to maybe-uninitialized warning in libfdlibm k_rem_pio2.c - JDK-8294183: AArch64: Wrong macro check in SharedRuntime::generate_deopt_blob - JDK-8294281: Allow warnings to be disabled on a per-file basis - JDK-8294673: JFR: Add SecurityProviderService#threshold to TestActiveSettingEvent.java - JDK-8294717: (bf) DirectByteBuffer constructor will leak if allocating Deallocator or Cleaner fails with OOME - JDK-8294906: Memory leak in PKCS11 NSS TLS server - JDK-8295564: Norwegian Nynorsk Locale is missing formatting - JDK-8295974: jni_FatalError and Xcheck:jni warnings should print the native stack when there are no Java frames - JDK-8296084: javax/swing/JSpinner/4788637/bug4788637.java fails intermittently on a VM - JDK-8296318: use-def assert: special case undetected loops nested in infinite loops - JDK-8296343: CPVE thrown on missing content-length in OCSP response - JDK-8296412: Special case infinite loops with unmerged backedges in IdealLoopTree::check_safepts - JDK-8296545: C2 Blackholes should allow load optimizations - JDK-8296934: Write a test to verify whether Undecorated Frame can be iconified or not - JDK-8297000: [jib] Add more friendly warning for proxy issues - JDK-8297154: Improve safepoint cleanup logging - JDK-8297450: ScaledTextFieldBorderTest.java fails when run with -show parameter - JDK-8297587: Upgrade JLine to 3.22.0 - JDK-8297730: C2: Arraycopy intrinsic throws incorrect exception - JDK-8297955: LDAP CertStore should use LdapName and not String for DNs - JDK-8298488: [macos13] tools/jpackage tests failing with 'Exit code: 137' on macOS - JDK-8298887: On the latest macOS+XCode the Robot API may report wrong colors - JDK-8299179: ArrayFill with store on backedge needs to reduce length by 1 - JDK-8299259: C2: Div/Mod nodes without zero check could be split through iv phi of loop resulting in SIGFPE - JDK-8299544: Improve performance of CRC32C intrinsics (non-AVX-512) for small inputs - JDK-8299570: [JVMCI] Insufficient error handling when CodeBuffer is exhausted - JDK-8299959: C2: CmpU::Value must filter overflow computation against local sub computation - JDK-8300042: Improve CPU related JFR events descriptions - JDK-8300079: SIGSEGV in LibraryCallKit::inline_string_copy due to constant NULL src argument - JDK-8300823: UB: Compile::_phase_optimize_finished is initialized too late - JDK-8300939: sun/security/provider/certpath/OCSP/ /OCSPNoContentLength.java fails due to network errors - JDK-8301050: Detect Xen Virtualization on Linux aarch64 - JDK-8301119: Support for GB18030-2022 - JDK-8301123: Enable Symbol refcounting underflow checks in PRODUCT - JDK-8301190: [vectorapi] The typeChar of LaneType is incorrect when default locale is tr - JDK-8301216: ForkJoinPool invokeAll() ignores timeout - JDK-8301338: Identical branch conditions in CompileBroker::print_heapinfo - JDK-8301491: C2: java.lang.StringUTF16::indexOfChar intrinsic called with negative character argument - JDK-8301637: ThreadLocalRandom.current().doubles().parallel() contention - JDK-8301661: Enhance os::pd_print_cpu_info on macOS and Windows - JDK-8302151: BMPImageReader throws an exception reading BMP images - JDK-8302172: [JVMCI] HotSpotResolvedJavaMethodImpl.canBeInlined must respect ForceInline - JDK-8302320: AsyncGetCallTrace obtains too few frames in sanity test - JDK-8302491: NoClassDefFoundError omits the original cause of an error - JDK-8302508: Add timestamp to the output TraceCompilerThreads - JDK-8302594: use-after-free in Node::destruct - JDK-8302595: use-after-free related to GraphKit::clone_map - JDK-8302791: Add specific ClassLoader object to Proxy IllegalArgumentException message - JDK-8302849: SurfaceManager might expose partially constructed object - JDK-8303069: Memory leak in CompilerOracle::parse_from_line - JDK-8303102: jcmd: ManagementAgent.status truncates the text longer than O_BUFLEN - JDK-8303130: Document required Accessibility permissions on macOS - JDK-8303354: addCertificatesToKeystore in KeystoreImpl.m needs CFRelease call in early potential CHECK_NULL return - JDK-8303433: Bump update version for OpenJDK: jdk-17.0.8 - JDK-8303440: The 'ZonedDateTime.parse' may not accept the 'UTC+XX' zone id - JDK-8303465: KeyStore of type KeychainStore, provider Apple does not show all trusted certificates - JDK-8303476: Add the runtime version in the release file of a JDK image - JDK-8303482: Update LCMS to 2.15 - JDK-8303508: Vector.lane() gets wrong value on x86 - JDK-8303511: C2: assert(get_ctrl(n) == cle_out) during unrolling - JDK-8303564: C2: 'Bad graph detected in build_loop_late' after a CMove is wrongly split thru phi - JDK-8303575: adjust Xen handling on Linux aarch64 - JDK-8303576: addIdentitiesToKeystore in KeystoreImpl.m needs CFRelease call in early potential CHECK_NULL return - JDK-8303588: [JVMCI] make JVMCI source directories conform with standard layout - JDK-8303809: Dispose context in SPNEGO NegotiatorImpl - JDK-8303822: gtestMain should give more helpful output - JDK-8303861: Error handling step timeouts should never be blocked by OnError and others - JDK-8303937: Corrupted heap dumps due to missing retries for os::write() - JDK-8303949: gcc10 warning Linux ppc64le - note: the layout of aggregates containing vectors with 8-byte alignment has changed in GCC 5 - JDK-8304054: Linux: NullPointerException from FontConfiguration.getVersion in case no fonts are installed - JDK-8304063: tools/jpackage/share/AppLauncherEnvTest.java fails when checking LD_LIBRARY_PATH - JDK-8304134: jib bootstrapper fails to quote filename when checking download filetype - JDK-8304291: [AIX] Broken build after JDK-8301998 - JDK-8304295: harfbuzz build fails with GCC 7 after JDK-8301998 - JDK-8304350: Font.getStringBounds calculates wrong width for TextAttribute.TRACKING other than 0.0 - JDK-8304671: javac regression: Compilation with --release 8 fails on underscore in enum identifiers - JDK-8304683: Memory leak in WB_IsMethodCompatible - JDK-8304760: Add 2 Microsoft TLS roots - JDK-8304867: Explicitly disable dtrace for ppc builds - JDK-8304880: [PPC64] VerifyOops code in C1 doesn't work with ZGC - JDK-8305088: SIGSEGV in Method::is_method_handle_intrinsic - JDK-8305113: (tz) Update Timezone Data to 2023c - JDK-8305400: ISO 4217 Amendment 175 Update - JDK-8305403: Shenandoah evacuation workers may deadlock - JDK-8305481: gtest is_first_C_frame failing on ARM - JDK-8305690: [X86] Do not emit two REX prefixes in Assembler::prefix - JDK-8305711: Arm: C2 always enters slowpath for monitorexit - JDK-8305721: add `make compile-commands` artifacts to .gitignore - JDK-8305975: Add TWCA Global Root CA - JDK-8305993: Add handleSocketErrorWithMessage to extend nio Net.c exception message - JDK-8305994: Guarantee eventual async monitor deflation - JDK-8306072: Open source several AWT MouseInfo related tests - JDK-8306133: Open source few AWT Drag & Drop related tests - JDK-8306409: Open source AWT KeyBoardFocusManger, LightWeightComponent related tests - JDK-8306432: Open source several AWT Text Component related tests - JDK-8306466: Open source more AWT Drag & Drop related tests - JDK-8306489: Open source AWT List related tests - JDK-8306543: GHA: MSVC installation is failing - JDK-8306640: Open source several AWT TextArea related tests - JDK-8306652: Open source AWT MenuItem related tests - JDK-8306658: GHA: MSVC installation could be optional since it might already be pre-installed - JDK-8306664: GHA: Update MSVC version to latest stepping - JDK-8306681: Open source more AWT DnD related tests - JDK-8306683: Open source several clipboard and color AWT tests - JDK-8306752: Open source several container and component AWT tests - JDK-8306753: Open source several container AWT tests - JDK-8306755: Open source few Swing JComponent and AbstractButton tests - JDK-8306768: CodeCache Analytics reports wrong threshold - JDK-8306774: Make runtime/Monitor/ /GuaranteedAsyncDeflationIntervalTest.java more reliable - JDK-8306825: Monitor deflation might be accidentally disabled by zero intervals - JDK-8306850: Open source AWT Modal related tests - JDK-8306871: Open source more AWT Drag & Drop tests - JDK-8306883: Thread stacksize is reported with wrong units in os::create_thread logging - JDK-8306941: Open source several datatransfer and dnd AWT tests - JDK-8306943: Open source several dnd AWT tests - JDK-8306954: Open source five Focus related tests - JDK-8306955: Open source several JComboBox jtreg tests - JDK-8306976: UTIL_REQUIRE_SPECIAL warning on grep - JDK-8306996: Open source Swing MenuItem related tests - JDK-8307080: Open source some more JComboBox jtreg tests - JDK-8307128: Open source some drag and drop tests 4 - JDK-8307130: Open source few Swing JMenu tests - JDK-8307133: Open source some JTable jtreg tests - JDK-8307134: Add GTS root CAs - JDK-8307135: java/awt/dnd/NotReallySerializableTest/ /NotReallySerializableTest.java failed - JDK-8307331: Correctly update line maps when class redefine rewrites bytecodes - JDK-8307346: Add missing gc+phases logging for ObjectCount(AfterGC) JFR event collection code - JDK-8307347: serviceability/sa/ClhsdbDumpclass.java could leave files owned by root on macOS - JDK-8307378: Allow collectors to provide specific values for GC notifications' actions - JDK-8307381: Open Source JFrame, JIF related Swing Tests - JDK-8307425: Socket input stream read burns CPU cycles with back-to-back poll(0) calls - JDK-8307799: Newly added java/awt/dnd/MozillaDnDTest.java has invalid jtreg `@requires` clause - JDK-8308554: [17u] Fix commit of 8286191. vm.musl was not removed from ExternalEditorTest - JDK-8308880: [17u] micro bench ZoneStrings missed in backport of 8278434 - JDK-8308884: [17u/11u] Backout JDK-8297951 - JDK-8311467: [17u] Remove designator DEFAULT_PROMOTED_VERSION_PRE=ea for release 17.0.8

Patchnames

SUSE-2023-3023,SUSE-SLE-Module-Basesystem-15-SP4-2023-3023,SUSE-SLE-Module-Basesystem-15-SP5-2023-3023,openSUSE-SLE-15.4-2023-3023,openSUSE-SLE-15.5-2023-3023

CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for java-17-openjdk",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for java-17-openjdk fixes the following issues:\n\n  Updated to version jdk-17.0.8+7 (July 2023 CPU):\n\n  - CVE-2023-22006: Fixed vulnerability in the network component (bsc#1213473).\n  - CVE-2023-22036: Fixed vulnerability in the utility component (bsc#1213474).\n  - CVE-2023-22041: Fixed vulnerability in the hotspot component (bsc#1213475).\n  - CVE-2023-22044: Fixed vulnerability in the hotspot component (bsc#1213479).\n  - CVE-2023-22045: Fixed vulnerability in the hotspot component (bsc#1213481).\n  - CVE-2023-22049: Fixed vulnerability in the libraries component (bsc#1213482).\n  - CVE-2023-25193: Fixed vulnerability in the embedded harfbuzz module (bsc#1207922).\n\n  - JDK-8294323: Improve Shared Class Data\n  - JDK-8296565: Enhanced archival support\n  - JDK-8298676, JDK-8300891: Enhanced Look and Feel\n  - JDK-8300285: Enhance TLS data handling\n  - JDK-8300596: Enhance Jar Signature validation\n  - JDK-8301998, JDK-8302084: Update HarfBuzz to 7.0.1\n  - JDK-8302475: Enhance HTTP client file downloading\n  - JDK-8302483: Enhance ZIP performance\n  - JDK-8303376: Better launching of JDI\n  - JDK-8304460: Improve array usages\n  - JDK-8304468: Better array usages\n  - JDK-8305312: Enhanced path handling\n  - JDK-8308682: Enhance AES performance\n\n  Bugfixes:\n\n  - JDK-8178806: Better exception logging in crypto code\n  - JDK-8201516: DebugNonSafepoints generates incorrect\n    information\n  - JDK-8224768: Test ActalisCA.java fails\n  - JDK-8227060: Optimize safepoint cleanup subtask order\n  - JDK-8227257: javax/swing/JFileChooser/4847375/bug4847375.java\n    fails with AssertionError\n  - JDK-8238274: (sctp) JDK-7118373 is not fixed for SctpChannel\n  - JDK-8244976: vmTestbase/nsk/jdi/Event/request/request001.java\n    doesn\u0027 initialize eName\n  - JDK-8245877: assert(_value != __null) failed: resolving NULL\n    _value in JvmtiExport::post_compiled_method_load\n  - JDK-8248001: javadoc generates invalid HTML pages whose\n    ftp:// links are broken\n  - JDK-8252990: Intrinsify Unsafe.storeStoreFence\n  - JDK-8254711: Add java.security.Provider.getService JFR Event\n  - JDK-8257856: Make ClassFileVersionsTest.java robust to JDK\n    version updates\n  - JDK-8261495: Shenandoah: reconsider update references memory\n    ordering\n  - JDK-8268288: jdk/jfr/api/consumer/streaming/\n    /TestOutOfProcessMigration.java fails with \u0027Error:\n    ShouldNotReachHere()\u0027\n  - JDK-8268298: jdk/jfr/api/consumer/log/TestVerbosity.java\n    fails: unexpected log message\n  - JDK-8268582: javadoc throws NPE with --ignore-source-errors\n    option\n  - JDK-8269821: Remove is-queue-active check in inner loop of\n    write_ref_array_pre_work\n  - JDK-8270434: JDI+UT: Unexpected event in JDI tests\n  - JDK-8270859: Post JEP 411 refactoring: client libs with\n    maximum covering \u003e 10K\n  - JDK-8270869: G1ServiceThread may not terminate\n  - JDK-8271519: java/awt/event/SequencedEvent/\n    /MultipleContextsFunctionalTest.java failed with \u0027Total [200]\n    - Expected [400]\u0027\n  - JDK-8273909: vmTestbase/nsk/jdi/Event/request/request001 can\n    still fail with \u0027ERROR: new event is not ThreadStartEvent\u0027\n  - JDK-8274243: Implement fast-path for ASCII-compatible\n    CharsetEncoders on aarch64\n  - JDK-8274615: Support relaxed atomic add for linux-aarch64\n  - JDK-8274864: Remove Amman/Cairo hacks in ZoneInfoFile\n  - JDK-8275233: Incorrect line number reported in exception\n    stack trace thrown from a lambda expression\n  - JDK-8275287: Relax memory ordering constraints on updating\n    instance class and array class counters\n  - JDK-8275721: Name of UTC timezone in a locale changes\n    depending on previous code\n  - JDK-8275735: [linux] Remove deprecated Metrics api (kernel\n    memory limit)\n  - JDK-8276058: Some swing test fails on specific CI macos system\n  - JDK-8277407: javax/swing/plaf/synth/SynthButtonUI/6276188/\n    /bug6276188.java fails to compile after JDK-8276058\n  - JDK-8277775: Fixup bugids in RemoveDropTargetCrashTest.java -\n    add 4357905\n  - JDK-8278146: G1: Rework VM_G1Concurrent VMOp to clearly\n    identify it as pause\n  - JDK-8278434: timeouts in test  java/time/test/java/time/\n    /format/TestZoneTextPrinterParser.java\n  - JDK-8278834: Error \u0027Cannot read field \u0027sym\u0027 because\n    \u0027this.lvar[od]\u0027 is null\u0027 when compiling\n  - JDK-8282077: PKCS11 provider C_sign() impl should handle\n    CKR_BUFFER_TOO_SMALL error\n  - JDK-8282201: Consider removal of expiry check in\n    VerifyCACerts.java test\n  - JDK-8282227: Locale information for nb is not working properly\n  - JDK-8282704: runtime/Thread/StopAtExit.java may leak memory\n  - JDK-8283057: Update GCC to version 11.2.0 for Oracle builds\n    on Linux\n  - JDK-8283062: Uninitialized warnings in libgtest with GCC 11.2\n  - JDK-8283520: JFR: Memory leak in dcmd_arena\n  - JDK-8283566: G1: Improve G1BarrierSet::enqueue performance\n  - JDK-8284331: Add sanity check for signal handler modification\n    warning.\n  - JDK-8285635: javax/swing/JRootPane/DefaultButtonTest.java\n    failed with Default Button not pressed for L\u0026F:\n    com.sun.java.swing.plaf.motif.MotifLookAndFeel\n  - JDK-8285987: executing shell scripts without #! fails on\n    Alpine linux\n  - JDK-8286191: misc tests fail due to JDK-8285987\n  - JDK-8286287: Reading file as UTF-16 causes Error which\n    \u0027shouldn\u0027t happen\u0027\n  - JDK-8286331: jni_GetStringUTFChars() uses wrong heap allocator\n  - JDK-8286346: 3-parameter version of AllocateHeap should not\n    ignore AllocFailType\n  - JDK-8286398: Address possibly lossy conversions in\n    jdk.internal.le\n  - JDK-8287007: [cgroups] Consistently use stringStream\n    throughout parsing code\n  - JDK-8287246: DSAKeyValue should check for missing params\n    instead of relying on KeyFactory provider\n  - JDK-8287541: Files.writeString fails to throw IOException for\n    charset \u0027windows-1252\u0027\n  - JDK-8287854: Dangling reference in ClassVerifier::verify_class\n  - JDK-8287876: The recently de-problemlisted\n    TestTitledBorderLeak test is unstable\n  - JDK-8287897: Augment src/jdk.internal.le/share/legal/jline.md\n    with information on 4th party dependencies\n  - JDK-8288589: Files.readString ignores encoding errors for\n    UTF-16\n  - JDK-8289509: Improve test coverage for XPath Axes:\n    descendant, descendant-or-self, following, following-sibling\n  - JDK-8289735: UTIL_LOOKUP_PROGS fails on pathes with space\n  - JDK-8289949: Improve test coverage for XPath: operators\n  - JDK-8290822: C2: assert in PhaseIdealLoop::do_unroll() is\n    subject to undefined behavior\n  - JDK-8291226: Create Test Cases to cover scenarios for\n    JDK-8278067\n  - JDK-8291637: HttpClient default keep alive timeout not\n    followed if server sends invalid value\n  - JDK-8291638: Keep-Alive timeout of 0 should close connection\n    immediately\n  - JDK-8292206: TestCgroupMetrics.java fails as getMemoryUsage()\n    is lower than expected\n  - JDK-8292301: [REDO v2] C2 crash when allocating array of size\n    too large\n  - JDK-8292407: Improve Weak CAS VarHandle/Unsafe tests\n    resilience under spurious failures\n  - JDK-8292713: Unsafe.allocateInstance should be intrinsified\n    without UseUnalignedAccesses\n  - JDK-8292755: Non-default method in interface leads to a stack\n    overflow in JShell\n  - JDK-8292990: Improve test coverage for XPath Axes: parent\n  - JDK-8293295: Add type check asserts to\n    java_lang_ref_Reference accessors\n  - JDK-8293492: ShenandoahControlThread missing from hs-err log\n    and thread dump\n  - JDK-8293858: Change PKCS7 code to use default SecureRandom\n    impl instead of SHA1PRNG\n  - JDK-8293887: AArch64 build failure with GCC 12 due to\n    maybe-uninitialized warning in libfdlibm k_rem_pio2.c\n  - JDK-8294183: AArch64: Wrong macro check in\n    SharedRuntime::generate_deopt_blob\n  - JDK-8294281: Allow warnings to be disabled on a per-file basis\n  - JDK-8294673: JFR: Add SecurityProviderService#threshold to\n    TestActiveSettingEvent.java\n  - JDK-8294717: (bf) DirectByteBuffer constructor will leak if\n    allocating Deallocator or Cleaner fails with OOME\n  - JDK-8294906: Memory leak in PKCS11 NSS TLS server\n  - JDK-8295564: Norwegian Nynorsk Locale is missing formatting\n  - JDK-8295974: jni_FatalError and Xcheck:jni warnings should\n    print the native stack when there are no Java frames\n  - JDK-8296084: javax/swing/JSpinner/4788637/bug4788637.java\n    fails intermittently on a VM\n  - JDK-8296318: use-def assert: special case undetected loops\n    nested in infinite loops\n  - JDK-8296343: CPVE thrown on missing content-length in OCSP\n    response\n  - JDK-8296412: Special case infinite loops with unmerged\n    backedges in IdealLoopTree::check_safepts\n  - JDK-8296545: C2 Blackholes should allow load optimizations\n  - JDK-8296934: Write a test to verify whether Undecorated Frame\n    can be iconified or not\n  - JDK-8297000: [jib] Add more friendly warning for proxy issues\n  - JDK-8297154: Improve safepoint cleanup logging\n  - JDK-8297450: ScaledTextFieldBorderTest.java fails when run\n    with -show parameter\n  - JDK-8297587: Upgrade JLine to 3.22.0\n  - JDK-8297730: C2: Arraycopy intrinsic throws incorrect\n    exception\n  - JDK-8297955: LDAP CertStore should use LdapName and not\n    String for DNs\n  - JDK-8298488: [macos13] tools/jpackage tests failing with\n    \u0027Exit code: 137\u0027 on macOS\n  - JDK-8298887: On the latest macOS+XCode the Robot API may\n    report wrong colors\n  - JDK-8299179: ArrayFill with store on backedge needs to reduce\n    length by 1\n  - JDK-8299259: C2: Div/Mod nodes without zero check could be\n    split through iv phi of loop resulting in SIGFPE\n  - JDK-8299544: Improve performance of CRC32C intrinsics\n    (non-AVX-512) for small inputs\n  - JDK-8299570: [JVMCI] Insufficient error handling when\n    CodeBuffer is exhausted\n  - JDK-8299959: C2: CmpU::Value must filter overflow computation\n    against local sub computation\n  - JDK-8300042: Improve CPU related JFR events descriptions\n  - JDK-8300079: SIGSEGV in LibraryCallKit::inline_string_copy\n    due to constant NULL src argument\n  - JDK-8300823: UB: Compile::_phase_optimize_finished is\n    initialized too late\n  - JDK-8300939: sun/security/provider/certpath/OCSP/\n    /OCSPNoContentLength.java fails due to network errors\n  - JDK-8301050: Detect Xen Virtualization on Linux aarch64\n  - JDK-8301119: Support for GB18030-2022\n  - JDK-8301123: Enable Symbol refcounting underflow checks in\n    PRODUCT\n  - JDK-8301190: [vectorapi] The typeChar of LaneType is\n    incorrect when default locale is tr\n  - JDK-8301216: ForkJoinPool invokeAll() ignores timeout\n  - JDK-8301338: Identical branch conditions in\n    CompileBroker::print_heapinfo\n  - JDK-8301491: C2: java.lang.StringUTF16::indexOfChar intrinsic\n    called with negative character argument\n  - JDK-8301637: ThreadLocalRandom.current().doubles().parallel()\n    contention\n  - JDK-8301661: Enhance os::pd_print_cpu_info on macOS and\n    Windows\n  - JDK-8302151: BMPImageReader throws an exception reading BMP\n    images\n  - JDK-8302172: [JVMCI] HotSpotResolvedJavaMethodImpl.canBeInlined\n    must respect ForceInline\n  - JDK-8302320: AsyncGetCallTrace obtains too few frames in\n    sanity test\n  - JDK-8302491: NoClassDefFoundError omits the original cause of\n    an error\n  - JDK-8302508: Add timestamp to the output TraceCompilerThreads\n  - JDK-8302594: use-after-free in Node::destruct\n  - JDK-8302595: use-after-free related to GraphKit::clone_map\n  - JDK-8302791: Add specific ClassLoader object to Proxy\n    IllegalArgumentException message\n  - JDK-8302849: SurfaceManager might expose partially\n    constructed object\n  - JDK-8303069: Memory leak in CompilerOracle::parse_from_line\n  - JDK-8303102: jcmd: ManagementAgent.status truncates the text\n    longer than O_BUFLEN\n  - JDK-8303130: Document required Accessibility permissions on\n    macOS\n  - JDK-8303354: addCertificatesToKeystore in KeystoreImpl.m\n    needs CFRelease call in early potential CHECK_NULL return\n  - JDK-8303433: Bump update version for OpenJDK: jdk-17.0.8\n  - JDK-8303440: The \u0027ZonedDateTime.parse\u0027 may not accept the\n    \u0027UTC+XX\u0027 zone id\n  - JDK-8303465: KeyStore of type KeychainStore, provider Apple\n    does not show all trusted certificates\n  - JDK-8303476: Add the runtime version in the release file of a\n    JDK image\n  - JDK-8303482: Update LCMS to 2.15\n  - JDK-8303508: Vector.lane() gets wrong value on x86\n  - JDK-8303511: C2: assert(get_ctrl(n) == cle_out) during\n    unrolling\n  - JDK-8303564: C2: \u0027Bad graph detected in build_loop_late\u0027\n    after a CMove is wrongly split thru phi\n  - JDK-8303575: adjust Xen handling on Linux aarch64\n  - JDK-8303576: addIdentitiesToKeystore in KeystoreImpl.m needs\n    CFRelease call in early potential CHECK_NULL return\n  - JDK-8303588: [JVMCI] make JVMCI source directories conform\n    with standard layout\n  - JDK-8303809: Dispose context in SPNEGO NegotiatorImpl\n  - JDK-8303822: gtestMain should give more helpful output\n  - JDK-8303861: Error handling step timeouts should never be\n    blocked by OnError and others\n  - JDK-8303937: Corrupted heap dumps due to missing retries for\n    os::write()\n  - JDK-8303949: gcc10 warning Linux ppc64le - note: the layout\n    of aggregates containing vectors with 8-byte alignment has\n    changed in GCC 5\n  - JDK-8304054: Linux: NullPointerException from\n    FontConfiguration.getVersion in case no fonts are installed\n  - JDK-8304063: tools/jpackage/share/AppLauncherEnvTest.java\n    fails when checking LD_LIBRARY_PATH\n  - JDK-8304134: jib bootstrapper fails to quote filename when\n    checking download filetype\n  - JDK-8304291: [AIX] Broken build after JDK-8301998\n  - JDK-8304295: harfbuzz build fails with GCC 7 after JDK-8301998\n  - JDK-8304350: Font.getStringBounds calculates wrong width for\n    TextAttribute.TRACKING other than 0.0\n  - JDK-8304671: javac regression: Compilation with --release 8\n    fails on underscore in enum identifiers\n  - JDK-8304683: Memory leak in WB_IsMethodCompatible\n  - JDK-8304760: Add 2 Microsoft TLS roots\n  - JDK-8304867: Explicitly disable dtrace for ppc builds\n  - JDK-8304880: [PPC64] VerifyOops code in C1 doesn\u0027t work with\n    ZGC\n  - JDK-8305088: SIGSEGV in Method::is_method_handle_intrinsic\n  - JDK-8305113: (tz) Update Timezone Data to 2023c\n  - JDK-8305400: ISO 4217 Amendment 175 Update\n  - JDK-8305403: Shenandoah evacuation workers may deadlock\n  - JDK-8305481: gtest is_first_C_frame failing on ARM\n  - JDK-8305690: [X86] Do not emit two REX prefixes in\n    Assembler::prefix\n  - JDK-8305711: Arm: C2 always enters slowpath for monitorexit\n  - JDK-8305721: add `make compile-commands` artifacts to\n    .gitignore\n  - JDK-8305975: Add TWCA Global Root CA\n  - JDK-8305993: Add handleSocketErrorWithMessage to extend nio\n    Net.c exception message\n  - JDK-8305994: Guarantee eventual async monitor deflation\n  - JDK-8306072: Open source several AWT MouseInfo related tests\n  - JDK-8306133: Open source few AWT Drag \u0026 Drop related tests\n  - JDK-8306409: Open source AWT KeyBoardFocusManger,\n    LightWeightComponent related tests\n  - JDK-8306432: Open source several AWT Text Component related\n    tests\n  - JDK-8306466: Open source more AWT Drag \u0026 Drop related tests\n  - JDK-8306489: Open source AWT List related tests\n  - JDK-8306543: GHA: MSVC installation is failing\n  - JDK-8306640: Open source several AWT TextArea related tests\n  - JDK-8306652: Open source AWT MenuItem related tests\n  - JDK-8306658: GHA: MSVC installation could be optional since\n    it might already be pre-installed\n  - JDK-8306664: GHA: Update MSVC version to latest stepping\n  - JDK-8306681: Open source more AWT DnD related tests\n  - JDK-8306683: Open source several clipboard and color AWT tests\n  - JDK-8306752: Open source several container and component AWT\n    tests\n  - JDK-8306753: Open source several container AWT tests\n  - JDK-8306755: Open source few Swing JComponent and\n    AbstractButton tests\n  - JDK-8306768: CodeCache Analytics reports wrong threshold\n  - JDK-8306774: Make runtime/Monitor/\n    /GuaranteedAsyncDeflationIntervalTest.java more reliable\n  - JDK-8306825: Monitor deflation might be accidentally disabled\n    by zero intervals\n  - JDK-8306850: Open source AWT Modal related tests\n  - JDK-8306871: Open source more AWT Drag \u0026 Drop tests\n  - JDK-8306883: Thread stacksize is reported with wrong units in\n    os::create_thread logging\n  - JDK-8306941: Open source several datatransfer and dnd AWT\n    tests\n  - JDK-8306943: Open source several dnd AWT tests\n  - JDK-8306954: Open source five Focus related tests\n  - JDK-8306955: Open source several JComboBox jtreg tests\n  - JDK-8306976: UTIL_REQUIRE_SPECIAL warning on grep\n  - JDK-8306996: Open source Swing MenuItem related tests\n  - JDK-8307080: Open source some more JComboBox jtreg tests\n  - JDK-8307128: Open source some drag and drop tests 4\n  - JDK-8307130: Open source few Swing JMenu tests\n  - JDK-8307133: Open source some JTable jtreg tests\n  - JDK-8307134: Add GTS root CAs\n  - JDK-8307135: java/awt/dnd/NotReallySerializableTest/\n    /NotReallySerializableTest.java failed\n  - JDK-8307331: Correctly update line maps when class redefine\n    rewrites bytecodes\n  - JDK-8307346: Add missing gc+phases logging for\n    ObjectCount(AfterGC) JFR event collection code\n  - JDK-8307347: serviceability/sa/ClhsdbDumpclass.java could\n    leave files owned by root on macOS\n  - JDK-8307378: Allow collectors to provide specific values for\n    GC notifications\u0027 actions\n  - JDK-8307381: Open Source JFrame, JIF related Swing Tests\n  - JDK-8307425: Socket input stream read burns CPU cycles with\n    back-to-back poll(0) calls\n  - JDK-8307799: Newly added java/awt/dnd/MozillaDnDTest.java has\n    invalid jtreg `@requires` clause\n  - JDK-8308554: [17u] Fix commit of 8286191. vm.musl was not\n    removed from ExternalEditorTest\n  - JDK-8308880: [17u] micro bench ZoneStrings missed in backport\n    of 8278434\n  - JDK-8308884: [17u/11u] Backout JDK-8297951\n  - JDK-8311467: [17u] Remove designator\n    DEFAULT_PROMOTED_VERSION_PRE=ea for release 17.0.8\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-2023-3023,SUSE-SLE-Module-Basesystem-15-SP4-2023-3023,SUSE-SLE-Module-Basesystem-15-SP5-2023-3023,openSUSE-SLE-15.4-2023-3023,openSUSE-SLE-15.5-2023-3023",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2023_3023-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2023:3023-1",
        "url": "https://www.suse.com/support/update/announcement/2023/suse-su-20233023-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2023:3023-1",
        "url": "https://lists.suse.com/pipermail/sle-updates/2023-July/030633.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1207922",
        "url": "https://bugzilla.suse.com/1207922"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1213473",
        "url": "https://bugzilla.suse.com/1213473"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1213474",
        "url": "https://bugzilla.suse.com/1213474"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1213475",
        "url": "https://bugzilla.suse.com/1213475"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1213479",
        "url": "https://bugzilla.suse.com/1213479"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1213481",
        "url": "https://bugzilla.suse.com/1213481"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1213482",
        "url": "https://bugzilla.suse.com/1213482"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-22006 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-22006/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-22036 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-22036/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-22041 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-22041/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-22044 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-22044/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-22045 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-22045/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-22049 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-22049/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-25193 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-25193/"
      }
    ],
    "title": "Security update for java-17-openjdk",
    "tracking": {
      "current_release_date": "2023-07-28T20:00:02Z",
      "generator": {
        "date": "2023-07-28T20:00:02Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2023:3023-1",
      "initial_release_date": "2023-07-28T20:00:02Z",
      "revision_history": [
        {
          "date": "2023-07-28T20:00:02Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
                "product": {
                  "name": "java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
                  "product_id": "java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
                "product": {
                  "name": "java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
                  "product_id": "java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
                "product": {
                  "name": "java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
                  "product_id": "java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
                "product": {
                  "name": "java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
                  "product_id": "java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.aarch64",
                "product": {
                  "name": "java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.aarch64",
                  "product_id": "java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "java-17-openjdk-src-17.0.8.0-150400.3.27.1.aarch64",
                "product": {
                  "name": "java-17-openjdk-src-17.0.8.0-150400.3.27.1.aarch64",
                  "product_id": "java-17-openjdk-src-17.0.8.0-150400.3.27.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "java-17-openjdk-17.0.8.0-150400.3.27.1.i586",
                "product": {
                  "name": "java-17-openjdk-17.0.8.0-150400.3.27.1.i586",
                  "product_id": "java-17-openjdk-17.0.8.0-150400.3.27.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "java-17-openjdk-demo-17.0.8.0-150400.3.27.1.i586",
                "product": {
                  "name": "java-17-openjdk-demo-17.0.8.0-150400.3.27.1.i586",
                  "product_id": "java-17-openjdk-demo-17.0.8.0-150400.3.27.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "java-17-openjdk-devel-17.0.8.0-150400.3.27.1.i586",
                "product": {
                  "name": "java-17-openjdk-devel-17.0.8.0-150400.3.27.1.i586",
                  "product_id": "java-17-openjdk-devel-17.0.8.0-150400.3.27.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "java-17-openjdk-headless-17.0.8.0-150400.3.27.1.i586",
                "product": {
                  "name": "java-17-openjdk-headless-17.0.8.0-150400.3.27.1.i586",
                  "product_id": "java-17-openjdk-headless-17.0.8.0-150400.3.27.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.i586",
                "product": {
                  "name": "java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.i586",
                  "product_id": "java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "java-17-openjdk-src-17.0.8.0-150400.3.27.1.i586",
                "product": {
                  "name": "java-17-openjdk-src-17.0.8.0-150400.3.27.1.i586",
                  "product_id": "java-17-openjdk-src-17.0.8.0-150400.3.27.1.i586"
                }
              }
            ],
            "category": "architecture",
            "name": "i586"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "java-17-openjdk-javadoc-17.0.8.0-150400.3.27.1.noarch",
                "product": {
                  "name": "java-17-openjdk-javadoc-17.0.8.0-150400.3.27.1.noarch",
                  "product_id": "java-17-openjdk-javadoc-17.0.8.0-150400.3.27.1.noarch"
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
                "product": {
                  "name": "java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
                  "product_id": "java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
                "product": {
                  "name": "java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
                  "product_id": "java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
                "product": {
                  "name": "java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
                  "product_id": "java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
                "product": {
                  "name": "java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
                  "product_id": "java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.ppc64le",
                "product": {
                  "name": "java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.ppc64le",
                  "product_id": "java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "java-17-openjdk-src-17.0.8.0-150400.3.27.1.ppc64le",
                "product": {
                  "name": "java-17-openjdk-src-17.0.8.0-150400.3.27.1.ppc64le",
                  "product_id": "java-17-openjdk-src-17.0.8.0-150400.3.27.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
                "product": {
                  "name": "java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
                  "product_id": "java-17-openjdk-17.0.8.0-150400.3.27.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
                "product": {
                  "name": "java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
                  "product_id": "java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
                "product": {
                  "name": "java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
                  "product_id": "java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
                "product": {
                  "name": "java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
                  "product_id": "java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.s390x",
                "product": {
                  "name": "java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.s390x",
                  "product_id": "java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "java-17-openjdk-src-17.0.8.0-150400.3.27.1.s390x",
                "product": {
                  "name": "java-17-openjdk-src-17.0.8.0-150400.3.27.1.s390x",
                  "product_id": "java-17-openjdk-src-17.0.8.0-150400.3.27.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
                "product": {
                  "name": "java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
                  "product_id": "java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
                "product": {
                  "name": "java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
                  "product_id": "java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
                "product": {
                  "name": "java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
                  "product_id": "java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
                "product": {
                  "name": "java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
                  "product_id": "java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.x86_64",
                "product": {
                  "name": "java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.x86_64",
                  "product_id": "java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "java-17-openjdk-src-17.0.8.0-150400.3.27.1.x86_64",
                "product": {
                  "name": "java-17-openjdk-src-17.0.8.0-150400.3.27.1.x86_64",
                  "product_id": "java-17-openjdk-src-17.0.8.0-150400.3.27.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Module for Basesystem 15 SP4",
                "product": {
                  "name": "SUSE Linux Enterprise Module for Basesystem 15 SP4",
                  "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP4",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-module-basesystem:15:sp4"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Module for Basesystem 15 SP5",
                "product": {
                  "name": "SUSE Linux Enterprise Module for Basesystem 15 SP5",
                  "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP5",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-module-basesystem:15:sp5"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "openSUSE Leap 15.4",
                "product": {
                  "name": "openSUSE Leap 15.4",
                  "product_id": "openSUSE Leap 15.4",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:leap:15.4"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "openSUSE Leap 15.5",
                "product": {
                  "name": "openSUSE Leap 15.5",
                  "product_id": "openSUSE Leap 15.5",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:leap:15.5"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP4",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64"
        },
        "product_reference": "java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP4",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le"
        },
        "product_reference": "java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-17.0.8.0-150400.3.27.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP4",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x"
        },
        "product_reference": "java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP4",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64"
        },
        "product_reference": "java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP4",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64"
        },
        "product_reference": "java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP4",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le"
        },
        "product_reference": "java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP4",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x"
        },
        "product_reference": "java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP4",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64"
        },
        "product_reference": "java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP4",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64"
        },
        "product_reference": "java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP4",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le"
        },
        "product_reference": "java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP4",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x"
        },
        "product_reference": "java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP4",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64"
        },
        "product_reference": "java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP4",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64"
        },
        "product_reference": "java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP4",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le"
        },
        "product_reference": "java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP4",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x"
        },
        "product_reference": "java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP4",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64"
        },
        "product_reference": "java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP5",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64"
        },
        "product_reference": "java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP5",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le"
        },
        "product_reference": "java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-17.0.8.0-150400.3.27.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP5",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x"
        },
        "product_reference": "java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP5",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64"
        },
        "product_reference": "java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP5",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64"
        },
        "product_reference": "java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP5",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le"
        },
        "product_reference": "java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP5",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x"
        },
        "product_reference": "java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP5",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64"
        },
        "product_reference": "java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP5",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64"
        },
        "product_reference": "java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP5",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le"
        },
        "product_reference": "java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP5",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x"
        },
        "product_reference": "java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP5",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64"
        },
        "product_reference": "java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP5",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64"
        },
        "product_reference": "java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP5",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le"
        },
        "product_reference": "java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP5",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x"
        },
        "product_reference": "java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP5",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64"
        },
        "product_reference": "java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64 as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64"
        },
        "product_reference": "java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le"
        },
        "product_reference": "java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-17.0.8.0-150400.3.27.1.s390x as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x"
        },
        "product_reference": "java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64 as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64"
        },
        "product_reference": "java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64 as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64"
        },
        "product_reference": "java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le"
        },
        "product_reference": "java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x"
        },
        "product_reference": "java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64 as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64"
        },
        "product_reference": "java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64 as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64"
        },
        "product_reference": "java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le"
        },
        "product_reference": "java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x"
        },
        "product_reference": "java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64 as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64"
        },
        "product_reference": "java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64 as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64"
        },
        "product_reference": "java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le"
        },
        "product_reference": "java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x"
        },
        "product_reference": "java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64 as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64"
        },
        "product_reference": "java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-javadoc-17.0.8.0-150400.3.27.1.noarch as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:java-17-openjdk-javadoc-17.0.8.0-150400.3.27.1.noarch"
        },
        "product_reference": "java-17-openjdk-javadoc-17.0.8.0-150400.3.27.1.noarch",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.aarch64 as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.aarch64"
        },
        "product_reference": "java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.ppc64le as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.ppc64le"
        },
        "product_reference": "java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.s390x as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.s390x"
        },
        "product_reference": "java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.x86_64 as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.x86_64"
        },
        "product_reference": "java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-src-17.0.8.0-150400.3.27.1.aarch64 as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.aarch64"
        },
        "product_reference": "java-17-openjdk-src-17.0.8.0-150400.3.27.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-src-17.0.8.0-150400.3.27.1.ppc64le as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.ppc64le"
        },
        "product_reference": "java-17-openjdk-src-17.0.8.0-150400.3.27.1.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-src-17.0.8.0-150400.3.27.1.s390x as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.s390x"
        },
        "product_reference": "java-17-openjdk-src-17.0.8.0-150400.3.27.1.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-src-17.0.8.0-150400.3.27.1.x86_64 as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.x86_64"
        },
        "product_reference": "java-17-openjdk-src-17.0.8.0-150400.3.27.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64"
        },
        "product_reference": "java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le"
        },
        "product_reference": "java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-17.0.8.0-150400.3.27.1.s390x as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x"
        },
        "product_reference": "java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64"
        },
        "product_reference": "java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64"
        },
        "product_reference": "java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le"
        },
        "product_reference": "java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x"
        },
        "product_reference": "java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64"
        },
        "product_reference": "java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64"
        },
        "product_reference": "java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le"
        },
        "product_reference": "java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x"
        },
        "product_reference": "java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64"
        },
        "product_reference": "java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64"
        },
        "product_reference": "java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le"
        },
        "product_reference": "java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x"
        },
        "product_reference": "java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64"
        },
        "product_reference": "java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-javadoc-17.0.8.0-150400.3.27.1.noarch as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:java-17-openjdk-javadoc-17.0.8.0-150400.3.27.1.noarch"
        },
        "product_reference": "java-17-openjdk-javadoc-17.0.8.0-150400.3.27.1.noarch",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.aarch64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.aarch64"
        },
        "product_reference": "java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.ppc64le as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.ppc64le"
        },
        "product_reference": "java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.s390x as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.s390x"
        },
        "product_reference": "java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.x86_64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.x86_64"
        },
        "product_reference": "java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-src-17.0.8.0-150400.3.27.1.aarch64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.aarch64"
        },
        "product_reference": "java-17-openjdk-src-17.0.8.0-150400.3.27.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-src-17.0.8.0-150400.3.27.1.ppc64le as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.ppc64le"
        },
        "product_reference": "java-17-openjdk-src-17.0.8.0-150400.3.27.1.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-src-17.0.8.0-150400.3.27.1.s390x as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.s390x"
        },
        "product_reference": "java-17-openjdk-src-17.0.8.0-150400.3.27.1.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "java-17-openjdk-src-17.0.8.0-150400.3.27.1.x86_64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.x86_64"
        },
        "product_reference": "java-17-openjdk-src-17.0.8.0-150400.3.27.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-22006",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-22006"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE (component: Networking).  Supported versions that are affected are Oracle Java SE: 11.0.19, 17.0.7, 20.0.1; Oracle GraalVM Enterprise Edition: 20.3.10, 21.3.6, 22.3.2; Oracle GraalVM for JDK: 17.0.7 and  20.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK.  Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in  unauthorized update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 3.1 (Integrity impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.4:java-17-openjdk-javadoc-17.0.8.0-150400.3.27.1.noarch",
          "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.5:java-17-openjdk-javadoc-17.0.8.0-150400.3.27.1.noarch",
          "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-22006",
          "url": "https://www.suse.com/security/cve/CVE-2023-22006"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1213473 for CVE-2023-22006",
          "url": "https://bugzilla.suse.com/1213473"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-javadoc-17.0.8.0-150400.3.27.1.noarch",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-javadoc-17.0.8.0-150400.3.27.1.noarch",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.1,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-javadoc-17.0.8.0-150400.3.27.1.noarch",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-javadoc-17.0.8.0-150400.3.27.1.noarch",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2023-07-28T20:00:02Z",
          "details": "low"
        }
      ],
      "title": "CVE-2023-22006"
    },
    {
      "cve": "CVE-2023-22036",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-22036"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE (component: Utility).  Supported versions that are affected are Oracle Java SE: 11.0.19, 17.0.7, 20.0.1; Oracle GraalVM Enterprise Edition: 20.3.10, 21.3.6, 22.3.2; Oracle GraalVM for JDK: 17.0.7 and  20.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK.  Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK. Note: This vulnerability can be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. This vulnerability also applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. CVSS 3.1 Base Score 3.7 (Availability impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.4:java-17-openjdk-javadoc-17.0.8.0-150400.3.27.1.noarch",
          "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.5:java-17-openjdk-javadoc-17.0.8.0-150400.3.27.1.noarch",
          "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-22036",
          "url": "https://www.suse.com/security/cve/CVE-2023-22036"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1213474 for CVE-2023-22036",
          "url": "https://bugzilla.suse.com/1213474"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-javadoc-17.0.8.0-150400.3.27.1.noarch",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-javadoc-17.0.8.0-150400.3.27.1.noarch",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.7,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-javadoc-17.0.8.0-150400.3.27.1.noarch",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-javadoc-17.0.8.0-150400.3.27.1.noarch",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2023-07-28T20:00:02Z",
          "details": "low"
        }
      ],
      "title": "CVE-2023-22036"
    },
    {
      "cve": "CVE-2023-22041",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-22041"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE (component: Hotspot).  Supported versions that are affected are Oracle Java SE: 8u371-perf, 11.0.19, 17.0.7, 20.0.1; Oracle GraalVM Enterprise Edition: 20.3.10, 21.3.6, 22.3.2; Oracle GraalVM for JDK: 17.0.7 and  20.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrastructure where Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK executes to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK.  Successful attacks of this vulnerability can result in  unauthorized access to critical data or complete access to all Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 5.1 (Confidentiality impacts).  CVSS Vector: (CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.4:java-17-openjdk-javadoc-17.0.8.0-150400.3.27.1.noarch",
          "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.5:java-17-openjdk-javadoc-17.0.8.0-150400.3.27.1.noarch",
          "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-22041",
          "url": "https://www.suse.com/security/cve/CVE-2023-22041"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1213475 for CVE-2023-22041",
          "url": "https://bugzilla.suse.com/1213475"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-javadoc-17.0.8.0-150400.3.27.1.noarch",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-javadoc-17.0.8.0-150400.3.27.1.noarch",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-javadoc-17.0.8.0-150400.3.27.1.noarch",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-javadoc-17.0.8.0-150400.3.27.1.noarch",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2023-07-28T20:00:02Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-22041"
    },
    {
      "cve": "CVE-2023-22044",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-22044"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE (component: Hotspot).  Supported versions that are affected are Oracle Java SE: 8u371-perf, 17.0.7, 20.0.1; Oracle GraalVM Enterprise Edition: 21.3.6, 22.3.2; Oracle GraalVM for JDK: 17.0.7 and  20.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK.  Successful attacks of this vulnerability can result in  unauthorized read access to a subset of Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK accessible data. Note: This vulnerability can be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. This vulnerability also applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. CVSS 3.1 Base Score 3.7 (Confidentiality impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.4:java-17-openjdk-javadoc-17.0.8.0-150400.3.27.1.noarch",
          "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.5:java-17-openjdk-javadoc-17.0.8.0-150400.3.27.1.noarch",
          "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-22044",
          "url": "https://www.suse.com/security/cve/CVE-2023-22044"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1213479 for CVE-2023-22044",
          "url": "https://bugzilla.suse.com/1213479"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-javadoc-17.0.8.0-150400.3.27.1.noarch",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-javadoc-17.0.8.0-150400.3.27.1.noarch",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.7,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-javadoc-17.0.8.0-150400.3.27.1.noarch",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-javadoc-17.0.8.0-150400.3.27.1.noarch",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2023-07-28T20:00:02Z",
          "details": "low"
        }
      ],
      "title": "CVE-2023-22044"
    },
    {
      "cve": "CVE-2023-22045",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-22045"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE (component: Hotspot).  Supported versions that are affected are Oracle Java SE: 8u371, 8u371-perf, 11.0.19, 17.0.7, 20.0.1; Oracle GraalVM Enterprise Edition: 20.3.10, 21.3.6, 22.3.2; Oracle GraalVM for JDK: 17.0.7 and  20.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK.  Successful attacks of this vulnerability can result in  unauthorized read access to a subset of Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK accessible data. Note: This vulnerability can be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. This vulnerability also applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. CVSS 3.1 Base Score 3.7 (Confidentiality impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.4:java-17-openjdk-javadoc-17.0.8.0-150400.3.27.1.noarch",
          "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.5:java-17-openjdk-javadoc-17.0.8.0-150400.3.27.1.noarch",
          "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-22045",
          "url": "https://www.suse.com/security/cve/CVE-2023-22045"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1213481 for CVE-2023-22045",
          "url": "https://bugzilla.suse.com/1213481"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-javadoc-17.0.8.0-150400.3.27.1.noarch",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-javadoc-17.0.8.0-150400.3.27.1.noarch",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.7,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-javadoc-17.0.8.0-150400.3.27.1.noarch",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-javadoc-17.0.8.0-150400.3.27.1.noarch",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2023-07-28T20:00:02Z",
          "details": "low"
        }
      ],
      "title": "CVE-2023-22045"
    },
    {
      "cve": "CVE-2023-22049",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-22049"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE (component: Libraries).  Supported versions that are affected are Oracle Java SE: 8u371, 8u371-perf, 11.0.19, 17.0.7, 20.0.1; Oracle GraalVM Enterprise Edition: 20.3.10, 21.3.6, 22.3.2; Oracle GraalVM for JDK: 17.0.7 and  20.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK.  Successful attacks of this vulnerability can result in  unauthorized update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK accessible data. Note: This vulnerability can be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. This vulnerability also applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. CVSS 3.1 Base Score 3.7 (Integrity impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.4:java-17-openjdk-javadoc-17.0.8.0-150400.3.27.1.noarch",
          "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.5:java-17-openjdk-javadoc-17.0.8.0-150400.3.27.1.noarch",
          "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-22049",
          "url": "https://www.suse.com/security/cve/CVE-2023-22049"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1213482 for CVE-2023-22049",
          "url": "https://bugzilla.suse.com/1213482"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-javadoc-17.0.8.0-150400.3.27.1.noarch",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-javadoc-17.0.8.0-150400.3.27.1.noarch",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.7,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-javadoc-17.0.8.0-150400.3.27.1.noarch",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-javadoc-17.0.8.0-150400.3.27.1.noarch",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2023-07-28T20:00:02Z",
          "details": "low"
        }
      ],
      "title": "CVE-2023-22049"
    },
    {
      "cve": "CVE-2023-25193",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-25193"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "hb-ot-layout-gsubgpos.hh in HarfBuzz through 6.0.0 allows attackers to trigger O(n^2) growth via consecutive marks during the process of looking back for base glyphs when attaching marks.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.4:java-17-openjdk-javadoc-17.0.8.0-150400.3.27.1.noarch",
          "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.5:java-17-openjdk-javadoc-17.0.8.0-150400.3.27.1.noarch",
          "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.x86_64",
          "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.aarch64",
          "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.ppc64le",
          "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.s390x",
          "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-25193",
          "url": "https://www.suse.com/security/cve/CVE-2023-25193"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1207922 for CVE-2023-25193",
          "url": "https://bugzilla.suse.com/1207922"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1213939 for CVE-2023-25193",
          "url": "https://bugzilla.suse.com/1213939"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-javadoc-17.0.8.0-150400.3.27.1.noarch",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-javadoc-17.0.8.0-150400.3.27.1.noarch",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-javadoc-17.0.8.0-150400.3.27.1.noarch",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.4:java-17-openjdk-src-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-demo-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-devel-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-headless-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-javadoc-17.0.8.0-150400.3.27.1.noarch",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-jmods-17.0.8.0-150400.3.27.1.x86_64",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.aarch64",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.ppc64le",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.s390x",
            "openSUSE Leap 15.5:java-17-openjdk-src-17.0.8.0-150400.3.27.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2023-07-28T20:00:02Z",
          "details": "important"
        }
      ],
      "title": "CVE-2023-25193"
    }
  ]
}

CVE-2023-22041 (GCVE-0-2023-22041)

Vulnerability from cvelistv5

Published

2023-07-18 20:18

Modified

2025-02-13 16:43

Severity ?

5.1 (Medium) - CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

CWE

Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrastructure where Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK executes to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK accessible data.

Summary

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 8u371-perf, 11.0.19, 17.0.7, 20.0.1; Oracle GraalVM Enterprise Edition: 20.3.10, 21.3.6, 22.3.2; Oracle GraalVM for JDK: 17.0.7 and 20.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrastructure where Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK executes to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 5.1 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N).

References

▼	URL	Tags
	https://www.oracle.com/security-alerts/cpujul2023.html	vendor-advisory
	https://security.netapp.com/advisory/ntap-20230725-0006/
	https://www.debian.org/security/2023/dsa-5458
	https://www.debian.org/security/2023/dsa-5478
	https://lists.debian.org/debian-lts-announce/2023/09/msg00018.html

Impacted products

	Vendor	Product	Version
	Oracle Corporation	Java SE JDK and JRE	Version: Oracle Java SE:8u371-perf Version: Oracle Java SE:11.0.19 Version: Oracle Java SE:17.0.7 Version: Oracle Java SE:20.0.1 Version: Oracle GraalVM Enterprise Edition:20.3.10 Version: Oracle GraalVM Enterprise Edition:21.3.6 Version: Oracle GraalVM Enterprise Edition:22.3.2 Version: Oracle GraalVM for JDK:17.0.7 Version: Oracle GraalVM for JDK:20.0.1

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T09:59:28.638Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "Oracle Advisory",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://www.oracle.com/security-alerts/cpujul2023.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20230725-0006/"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://www.debian.org/security/2023/dsa-5458"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://www.debian.org/security/2023/dsa-5478"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2023/09/msg00018.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Java SE JDK and JRE",
          "vendor": "Oracle Corporation",
          "versions": [
            {
              "status": "affected",
              "version": "Oracle Java SE:8u371-perf"
            },
            {
              "status": "affected",
              "version": "Oracle Java SE:11.0.19"
            },
            {
              "status": "affected",
              "version": "Oracle Java SE:17.0.7"
            },
            {
              "status": "affected",
              "version": "Oracle Java SE:20.0.1"
            },
            {
              "status": "affected",
              "version": "Oracle GraalVM Enterprise Edition:20.3.10"
            },
            {
              "status": "affected",
              "version": "Oracle GraalVM Enterprise Edition:21.3.6"
            },
            {
              "status": "affected",
              "version": "Oracle GraalVM Enterprise Edition:22.3.2"
            },
            {
              "status": "affected",
              "version": "Oracle GraalVM for JDK:17.0.7"
            },
            {
              "status": "affected",
              "version": "Oracle GraalVM for JDK:20.0.1"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en-US",
          "value": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE (component: Hotspot).  Supported versions that are affected are Oracle Java SE: 8u371-perf, 11.0.19, 17.0.7, 20.0.1; Oracle GraalVM Enterprise Edition: 20.3.10, 21.3.6, 22.3.2; Oracle GraalVM for JDK: 17.0.7 and  20.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrastructure where Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK executes to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK.  Successful attacks of this vulnerability can result in  unauthorized access to critical data or complete access to all Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 5.1 (Confidentiality impacts).  CVSS Vector: (CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N)."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "HIGH",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 5.1,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrastructure where Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK executes to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK.  Successful attacks of this vulnerability can result in  unauthorized access to critical data or complete access to all Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK accessible data.",
              "lang": "en-US"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2023-09-19T10:06:13.488Z",
        "orgId": "43595867-4340-4103-b7a2-9a5208d29a85",
        "shortName": "oracle"
      },
      "references": [
        {
          "name": "Oracle Advisory",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://www.oracle.com/security-alerts/cpujul2023.html"
        },
        {
          "url": "https://security.netapp.com/advisory/ntap-20230725-0006/"
        },
        {
          "url": "https://www.debian.org/security/2023/dsa-5458"
        },
        {
          "url": "https://www.debian.org/security/2023/dsa-5478"
        },
        {
          "url": "https://lists.debian.org/debian-lts-announce/2023/09/msg00018.html"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "43595867-4340-4103-b7a2-9a5208d29a85",
    "assignerShortName": "oracle",
    "cveId": "CVE-2023-22041",
    "datePublished": "2023-07-18T20:18:24.914Z",
    "dateReserved": "2022-12-17T19:26:00.754Z",
    "dateUpdated": "2025-02-13T16:43:29.220Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2023-22045 (GCVE-0-2023-22045)

Vulnerability from cvelistv5

Published

2023-07-18 20:18

Modified

2025-02-13 16:43

Severity ?

3.7 (Low) - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

CWE

Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK accessible data.

Summary

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 8u371, 8u371-perf, 11.0.19, 17.0.7, 20.0.1; Oracle GraalVM Enterprise Edition: 20.3.10, 21.3.6, 22.3.2; Oracle GraalVM for JDK: 17.0.7 and 20.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK accessible data. Note: This vulnerability can be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. This vulnerability also applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. CVSS 3.1 Base Score 3.7 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N).

References

▼	URL	Tags
	https://www.oracle.com/security-alerts/cpujul2023.html	vendor-advisory
	https://security.netapp.com/advisory/ntap-20230725-0006/
	https://www.debian.org/security/2023/dsa-5458
	https://www.debian.org/security/2023/dsa-5478
	https://lists.debian.org/debian-lts-announce/2023/09/msg00018.html

Impacted products

	Vendor	Product	Version
	Oracle Corporation	Java SE JDK and JRE	Version: Oracle Java SE:8u371 Version: Oracle Java SE:8u371-perf Version: Oracle Java SE:11.0.19 Version: Oracle Java SE:17.0.7 Version: Oracle Java SE:20.0.1 Version: Oracle GraalVM Enterprise Edition:20.3.10 Version: Oracle GraalVM Enterprise Edition:21.3.6 Version: Oracle GraalVM Enterprise Edition:22.3.2 Version: Oracle GraalVM for JDK:17.0.7 Version: Oracle GraalVM for JDK:20.0.1

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T09:59:28.912Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "Oracle Advisory",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://www.oracle.com/security-alerts/cpujul2023.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20230725-0006/"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://www.debian.org/security/2023/dsa-5458"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://www.debian.org/security/2023/dsa-5478"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2023/09/msg00018.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Java SE JDK and JRE",
          "vendor": "Oracle Corporation",
          "versions": [
            {
              "status": "affected",
              "version": "Oracle Java SE:8u371"
            },
            {
              "status": "affected",
              "version": "Oracle Java SE:8u371-perf"
            },
            {
              "status": "affected",
              "version": "Oracle Java SE:11.0.19"
            },
            {
              "status": "affected",
              "version": "Oracle Java SE:17.0.7"
            },
            {
              "status": "affected",
              "version": "Oracle Java SE:20.0.1"
            },
            {
              "status": "affected",
              "version": "Oracle GraalVM Enterprise Edition:20.3.10"
            },
            {
              "status": "affected",
              "version": "Oracle GraalVM Enterprise Edition:21.3.6"
            },
            {
              "status": "affected",
              "version": "Oracle GraalVM Enterprise Edition:22.3.2"
            },
            {
              "status": "affected",
              "version": "Oracle GraalVM for JDK:17.0.7"
            },
            {
              "status": "affected",
              "version": "Oracle GraalVM for JDK:20.0.1"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en-US",
          "value": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE (component: Hotspot).  Supported versions that are affected are Oracle Java SE: 8u371, 8u371-perf, 11.0.19, 17.0.7, 20.0.1; Oracle GraalVM Enterprise Edition: 20.3.10, 21.3.6, 22.3.2; Oracle GraalVM for JDK: 17.0.7 and  20.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK.  Successful attacks of this vulnerability can result in  unauthorized read access to a subset of Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK accessible data. Note: This vulnerability can be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. This vulnerability also applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. CVSS 3.1 Base Score 3.7 (Confidentiality impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N)."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 3.7,
            "baseSeverity": "LOW",
            "confidentialityImpact": "LOW",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK.  Successful attacks of this vulnerability can result in  unauthorized read access to a subset of Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK accessible data.",
              "lang": "en-US"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2023-09-19T10:06:25.832Z",
        "orgId": "43595867-4340-4103-b7a2-9a5208d29a85",
        "shortName": "oracle"
      },
      "references": [
        {
          "name": "Oracle Advisory",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://www.oracle.com/security-alerts/cpujul2023.html"
        },
        {
          "url": "https://security.netapp.com/advisory/ntap-20230725-0006/"
        },
        {
          "url": "https://www.debian.org/security/2023/dsa-5458"
        },
        {
          "url": "https://www.debian.org/security/2023/dsa-5478"
        },
        {
          "url": "https://lists.debian.org/debian-lts-announce/2023/09/msg00018.html"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "43595867-4340-4103-b7a2-9a5208d29a85",
    "assignerShortName": "oracle",
    "cveId": "CVE-2023-22045",
    "datePublished": "2023-07-18T20:18:28.991Z",
    "dateReserved": "2022-12-17T19:26:00.754Z",
    "dateUpdated": "2025-02-13T16:43:30.946Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2023-22036 (GCVE-0-2023-22036)

Vulnerability from cvelistv5

Published

2023-07-18 20:18

Modified

2025-02-13 16:43

Severity ?

3.7 (Low) - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

CWE

Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK.

Summary

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE (component: Utility). Supported versions that are affected are Oracle Java SE: 11.0.19, 17.0.7, 20.0.1; Oracle GraalVM Enterprise Edition: 20.3.10, 21.3.6, 22.3.2; Oracle GraalVM for JDK: 17.0.7 and 20.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK. Note: This vulnerability can be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. This vulnerability also applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. CVSS 3.1 Base Score 3.7 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L).

References

▼	URL	Tags
	https://www.oracle.com/security-alerts/cpujul2023.html	vendor-advisory
	https://security.netapp.com/advisory/ntap-20230725-0006/
	https://www.debian.org/security/2023/dsa-5458
	https://www.debian.org/security/2023/dsa-5478
	https://lists.debian.org/debian-lts-announce/2023/09/msg00018.html

Impacted products

	Vendor	Product	Version
	Oracle Corporation	Java SE JDK and JRE	Version: Oracle Java SE:11.0.19 Version: Oracle Java SE:17.0.7 Version: Oracle Java SE:20.0.1 Version: Oracle GraalVM Enterprise Edition:20.3.10 Version: Oracle GraalVM Enterprise Edition:21.3.6 Version: Oracle GraalVM Enterprise Edition:22.3.2 Version: Oracle GraalVM for JDK:17.0.7 Version: Oracle GraalVM for JDK:20.0.1

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T09:59:28.789Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "Oracle Advisory",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://www.oracle.com/security-alerts/cpujul2023.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20230725-0006/"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://www.debian.org/security/2023/dsa-5458"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://www.debian.org/security/2023/dsa-5478"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2023/09/msg00018.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Java SE JDK and JRE",
          "vendor": "Oracle Corporation",
          "versions": [
            {
              "status": "affected",
              "version": "Oracle Java SE:11.0.19"
            },
            {
              "status": "affected",
              "version": "Oracle Java SE:17.0.7"
            },
            {
              "status": "affected",
              "version": "Oracle Java SE:20.0.1"
            },
            {
              "status": "affected",
              "version": "Oracle GraalVM Enterprise Edition:20.3.10"
            },
            {
              "status": "affected",
              "version": "Oracle GraalVM Enterprise Edition:21.3.6"
            },
            {
              "status": "affected",
              "version": "Oracle GraalVM Enterprise Edition:22.3.2"
            },
            {
              "status": "affected",
              "version": "Oracle GraalVM for JDK:17.0.7"
            },
            {
              "status": "affected",
              "version": "Oracle GraalVM for JDK:20.0.1"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en-US",
          "value": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE (component: Utility).  Supported versions that are affected are Oracle Java SE: 11.0.19, 17.0.7, 20.0.1; Oracle GraalVM Enterprise Edition: 20.3.10, 21.3.6, 22.3.2; Oracle GraalVM for JDK: 17.0.7 and  20.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK.  Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK. Note: This vulnerability can be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. This vulnerability also applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. CVSS 3.1 Base Score 3.7 (Availability impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L)."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 3.7,
            "baseSeverity": "LOW",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK.  Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK.",
              "lang": "en-US"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2023-09-19T10:06:31.451Z",
        "orgId": "43595867-4340-4103-b7a2-9a5208d29a85",
        "shortName": "oracle"
      },
      "references": [
        {
          "name": "Oracle Advisory",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://www.oracle.com/security-alerts/cpujul2023.html"
        },
        {
          "url": "https://security.netapp.com/advisory/ntap-20230725-0006/"
        },
        {
          "url": "https://www.debian.org/security/2023/dsa-5458"
        },
        {
          "url": "https://www.debian.org/security/2023/dsa-5478"
        },
        {
          "url": "https://lists.debian.org/debian-lts-announce/2023/09/msg00018.html"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "43595867-4340-4103-b7a2-9a5208d29a85",
    "assignerShortName": "oracle",
    "cveId": "CVE-2023-22036",
    "datePublished": "2023-07-18T20:18:20.850Z",
    "dateReserved": "2022-12-17T19:26:00.753Z",
    "dateUpdated": "2025-02-13T16:43:28.142Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2023-22006 (GCVE-0-2023-22006)

Vulnerability from cvelistv5

Published

2023-07-18 20:18

Modified

2025-02-13 16:43

Severity ?

3.1 (Low) - CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N

CWE

Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK accessible data.

Summary

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE (component: Networking). Supported versions that are affected are Oracle Java SE: 11.0.19, 17.0.7, 20.0.1; Oracle GraalVM Enterprise Edition: 20.3.10, 21.3.6, 22.3.2; Oracle GraalVM for JDK: 17.0.7 and 20.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 3.1 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N).

References

▼	URL	Tags
	https://www.oracle.com/security-alerts/cpujul2023.html	vendor-advisory
	https://security.netapp.com/advisory/ntap-20230725-0006/
	https://www.debian.org/security/2023/dsa-5458
	https://www.debian.org/security/2023/dsa-5478
	https://lists.debian.org/debian-lts-announce/2023/09/msg00018.html

Impacted products

	Vendor	Product	Version
	Oracle Corporation	Java SE JDK and JRE	Version: Oracle Java SE:11.0.19 Version: Oracle Java SE:17.0.7 Version: Oracle Java SE:20.0.1 Version: Oracle GraalVM Enterprise Edition:20.3.10 Version: Oracle GraalVM Enterprise Edition:21.3.6 Version: Oracle GraalVM Enterprise Edition:22.3.2 Version: Oracle GraalVM for JDK:17.0.7 Version: Oracle GraalVM for JDK:20.0.1

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T09:59:28.529Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "Oracle Advisory",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://www.oracle.com/security-alerts/cpujul2023.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20230725-0006/"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://www.debian.org/security/2023/dsa-5458"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://www.debian.org/security/2023/dsa-5478"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2023/09/msg00018.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Java SE JDK and JRE",
          "vendor": "Oracle Corporation",
          "versions": [
            {
              "status": "affected",
              "version": "Oracle Java SE:11.0.19"
            },
            {
              "status": "affected",
              "version": "Oracle Java SE:17.0.7"
            },
            {
              "status": "affected",
              "version": "Oracle Java SE:20.0.1"
            },
            {
              "status": "affected",
              "version": "Oracle GraalVM Enterprise Edition:20.3.10"
            },
            {
              "status": "affected",
              "version": "Oracle GraalVM Enterprise Edition:21.3.6"
            },
            {
              "status": "affected",
              "version": "Oracle GraalVM Enterprise Edition:22.3.2"
            },
            {
              "status": "affected",
              "version": "Oracle GraalVM for JDK:17.0.7"
            },
            {
              "status": "affected",
              "version": "Oracle GraalVM for JDK:20.0.1"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en-US",
          "value": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE (component: Networking).  Supported versions that are affected are Oracle Java SE: 11.0.19, 17.0.7, 20.0.1; Oracle GraalVM Enterprise Edition: 20.3.10, 21.3.6, 22.3.2; Oracle GraalVM for JDK: 17.0.7 and  20.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK.  Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in  unauthorized update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 3.1 (Integrity impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N)."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 3.1,
            "baseSeverity": "LOW",
            "confidentialityImpact": "NONE",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK.  Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in  unauthorized update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK accessible data.",
              "lang": "en-US"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2023-09-19T10:06:18.688Z",
        "orgId": "43595867-4340-4103-b7a2-9a5208d29a85",
        "shortName": "oracle"
      },
      "references": [
        {
          "name": "Oracle Advisory",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://www.oracle.com/security-alerts/cpujul2023.html"
        },
        {
          "url": "https://security.netapp.com/advisory/ntap-20230725-0006/"
        },
        {
          "url": "https://www.debian.org/security/2023/dsa-5458"
        },
        {
          "url": "https://www.debian.org/security/2023/dsa-5478"
        },
        {
          "url": "https://lists.debian.org/debian-lts-announce/2023/09/msg00018.html"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "43595867-4340-4103-b7a2-9a5208d29a85",
    "assignerShortName": "oracle",
    "cveId": "CVE-2023-22006",
    "datePublished": "2023-07-18T20:18:06.679Z",
    "dateReserved": "2022-12-17T19:26:00.745Z",
    "dateUpdated": "2025-02-13T16:43:22.742Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2023-22044 (GCVE-0-2023-22044)

Vulnerability from cvelistv5

Published

2023-07-18 20:18

Modified

2025-02-13 16:43

Severity ?

3.7 (Low) - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

CWE

Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK accessible data.

Summary

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 8u371-perf, 17.0.7, 20.0.1; Oracle GraalVM Enterprise Edition: 21.3.6, 22.3.2; Oracle GraalVM for JDK: 17.0.7 and 20.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK accessible data. Note: This vulnerability can be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. This vulnerability also applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. CVSS 3.1 Base Score 3.7 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N).

References

▼	URL	Tags
	https://www.oracle.com/security-alerts/cpujul2023.html	vendor-advisory
	https://security.netapp.com/advisory/ntap-20230725-0006/
	https://www.debian.org/security/2023/dsa-5458

Impacted products

	Vendor	Product	Version
	Oracle Corporation	Java SE JDK and JRE	Version: Oracle Java SE:8u371-perf Version: Oracle Java SE:17.0.7 Version: Oracle Java SE:20.0.1 Version: Oracle GraalVM Enterprise Edition:21.3.6 Version: Oracle GraalVM Enterprise Edition:22.3.2 Version: Oracle GraalVM for JDK:17.0.7 Version: Oracle GraalVM for JDK:20.0.1

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T09:59:28.778Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "Oracle Advisory",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://www.oracle.com/security-alerts/cpujul2023.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20230725-0006/"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://www.debian.org/security/2023/dsa-5458"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2023-22044",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-13T16:29:00.942800Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-13T16:43:40.934Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Java SE JDK and JRE",
          "vendor": "Oracle Corporation",
          "versions": [
            {
              "status": "affected",
              "version": "Oracle Java SE:8u371-perf"
            },
            {
              "status": "affected",
              "version": "Oracle Java SE:17.0.7"
            },
            {
              "status": "affected",
              "version": "Oracle Java SE:20.0.1"
            },
            {
              "status": "affected",
              "version": "Oracle GraalVM Enterprise Edition:21.3.6"
            },
            {
              "status": "affected",
              "version": "Oracle GraalVM Enterprise Edition:22.3.2"
            },
            {
              "status": "affected",
              "version": "Oracle GraalVM for JDK:17.0.7"
            },
            {
              "status": "affected",
              "version": "Oracle GraalVM for JDK:20.0.1"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en-US",
          "value": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE (component: Hotspot).  Supported versions that are affected are Oracle Java SE: 8u371-perf, 17.0.7, 20.0.1; Oracle GraalVM Enterprise Edition: 21.3.6, 22.3.2; Oracle GraalVM for JDK: 17.0.7 and  20.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK.  Successful attacks of this vulnerability can result in  unauthorized read access to a subset of Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK accessible data. Note: This vulnerability can be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. This vulnerability also applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. CVSS 3.1 Base Score 3.7 (Confidentiality impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N)."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 3.7,
            "baseSeverity": "LOW",
            "confidentialityImpact": "LOW",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK.  Successful attacks of this vulnerability can result in  unauthorized read access to a subset of Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK accessible data.",
              "lang": "en-US"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2023-07-26T03:06:16.807Z",
        "orgId": "43595867-4340-4103-b7a2-9a5208d29a85",
        "shortName": "oracle"
      },
      "references": [
        {
          "name": "Oracle Advisory",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://www.oracle.com/security-alerts/cpujul2023.html"
        },
        {
          "url": "https://security.netapp.com/advisory/ntap-20230725-0006/"
        },
        {
          "url": "https://www.debian.org/security/2023/dsa-5458"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "43595867-4340-4103-b7a2-9a5208d29a85",
    "assignerShortName": "oracle",
    "cveId": "CVE-2023-22044",
    "datePublished": "2023-07-18T20:18:28.006Z",
    "dateReserved": "2022-12-17T19:26:00.754Z",
    "dateUpdated": "2025-02-13T16:43:30.316Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2023-22049 (GCVE-0-2023-22049)

Vulnerability from cvelistv5

Published

2023-07-18 20:18

Modified

2025-02-13 16:43

Severity ?

3.7 (Low) - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

CWE

Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK accessible data.

Summary

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 8u371, 8u371-perf, 11.0.19, 17.0.7, 20.0.1; Oracle GraalVM Enterprise Edition: 20.3.10, 21.3.6, 22.3.2; Oracle GraalVM for JDK: 17.0.7 and 20.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK accessible data. Note: This vulnerability can be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. This vulnerability also applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. CVSS 3.1 Base Score 3.7 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N).

References

▼	URL	Tags
	https://www.oracle.com/security-alerts/cpujul2023.html	vendor-advisory
	https://security.netapp.com/advisory/ntap-20230725-0006/
	https://www.debian.org/security/2023/dsa-5458
	https://www.debian.org/security/2023/dsa-5478
	https://lists.debian.org/debian-lts-announce/2023/09/msg00018.html
	https://security.netapp.com/advisory/ntap-20240621-0006/

Impacted products

	Vendor	Product	Version
	Oracle Corporation	Java SE JDK and JRE	Version: Oracle Java SE:8u371 Version: Oracle Java SE:8u371-perf Version: Oracle Java SE:11.0.19 Version: Oracle Java SE:17.0.7 Version: Oracle Java SE:20.0.1 Version: Oracle GraalVM Enterprise Edition:20.3.10 Version: Oracle GraalVM Enterprise Edition:21.3.6 Version: Oracle GraalVM Enterprise Edition:22.3.2 Version: Oracle GraalVM for JDK:17.0.7 Version: Oracle GraalVM for JDK:20.0.1

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T09:59:28.682Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "Oracle Advisory",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://www.oracle.com/security-alerts/cpujul2023.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20230725-0006/"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://www.debian.org/security/2023/dsa-5458"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://www.debian.org/security/2023/dsa-5478"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2023/09/msg00018.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20240621-0006/"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Java SE JDK and JRE",
          "vendor": "Oracle Corporation",
          "versions": [
            {
              "status": "affected",
              "version": "Oracle Java SE:8u371"
            },
            {
              "status": "affected",
              "version": "Oracle Java SE:8u371-perf"
            },
            {
              "status": "affected",
              "version": "Oracle Java SE:11.0.19"
            },
            {
              "status": "affected",
              "version": "Oracle Java SE:17.0.7"
            },
            {
              "status": "affected",
              "version": "Oracle Java SE:20.0.1"
            },
            {
              "status": "affected",
              "version": "Oracle GraalVM Enterprise Edition:20.3.10"
            },
            {
              "status": "affected",
              "version": "Oracle GraalVM Enterprise Edition:21.3.6"
            },
            {
              "status": "affected",
              "version": "Oracle GraalVM Enterprise Edition:22.3.2"
            },
            {
              "status": "affected",
              "version": "Oracle GraalVM for JDK:17.0.7"
            },
            {
              "status": "affected",
              "version": "Oracle GraalVM for JDK:20.0.1"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en-US",
          "value": "Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE (component: Libraries).  Supported versions that are affected are Oracle Java SE: 8u371, 8u371-perf, 11.0.19, 17.0.7, 20.0.1; Oracle GraalVM Enterprise Edition: 20.3.10, 21.3.6, 22.3.2; Oracle GraalVM for JDK: 17.0.7 and  20.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK.  Successful attacks of this vulnerability can result in  unauthorized update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK accessible data. Note: This vulnerability can be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. This vulnerability also applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. CVSS 3.1 Base Score 3.7 (Integrity impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N)."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 3.7,
            "baseSeverity": "LOW",
            "confidentialityImpact": "NONE",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK.  Successful attacks of this vulnerability can result in  unauthorized update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK accessible data.",
              "lang": "en-US"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-06-21T19:07:14.476Z",
        "orgId": "43595867-4340-4103-b7a2-9a5208d29a85",
        "shortName": "oracle"
      },
      "references": [
        {
          "name": "Oracle Advisory",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://www.oracle.com/security-alerts/cpujul2023.html"
        },
        {
          "url": "https://security.netapp.com/advisory/ntap-20230725-0006/"
        },
        {
          "url": "https://www.debian.org/security/2023/dsa-5458"
        },
        {
          "url": "https://www.debian.org/security/2023/dsa-5478"
        },
        {
          "url": "https://lists.debian.org/debian-lts-announce/2023/09/msg00018.html"
        },
        {
          "url": "https://security.netapp.com/advisory/ntap-20240621-0006/"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "43595867-4340-4103-b7a2-9a5208d29a85",
    "assignerShortName": "oracle",
    "cveId": "CVE-2023-22049",
    "datePublished": "2023-07-18T20:18:32.121Z",
    "dateReserved": "2022-12-17T19:26:00.755Z",
    "dateUpdated": "2025-02-13T16:43:32.651Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2023-25193 (GCVE-0-2023-25193)

Vulnerability from cvelistv5

Published

2023-02-04 00:00

Modified

2025-03-25 20:23

Severity ?

7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE

Summary

hb-ot-layout-gsubgpos.hh in HarfBuzz through 6.0.0 allows attackers to trigger O(n^2) growth via consecutive marks during the process of looking back for base glyphs when attaching marks.

References

▼	URL	Tags
	https://github.com/harfbuzz/harfbuzz/commit/85be877925ddbf34f74a1229f3ca1716bb6170dc
	https://chromium.googlesource.com/chromium/src/+/e1f324aa681af54101c1f2d173d92adb80e37088/DEPS#361
	https://github.com/harfbuzz/harfbuzz/blob/2822b589bc837fae6f66233e2cf2eef0f6ce8470/src/hb-ot-layout-gsubgpos.hh
	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KWCHWSICWVZSAXP2YAXM65JC2GR53547/	vendor-advisory
	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YZ5M2GSAIHFPLHYJXUPQ2QDJCLWXUGO3/	vendor-advisory
	https://security.netapp.com/advisory/ntap-20230725-0006/

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T11:18:36.255Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://github.com/harfbuzz/harfbuzz/commit/85be877925ddbf34f74a1229f3ca1716bb6170dc"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://chromium.googlesource.com/chromium/src/+/e1f324aa681af54101c1f2d173d92adb80e37088/DEPS#361"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://github.com/harfbuzz/harfbuzz/blob/2822b589bc837fae6f66233e2cf2eef0f6ce8470/src/hb-ot-layout-gsubgpos.hh"
          },
          {
            "name": "FEDORA-2023-4e6353c6f7",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KWCHWSICWVZSAXP2YAXM65JC2GR53547/"
          },
          {
            "name": "FEDORA-2023-a48406ecd2",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YZ5M2GSAIHFPLHYJXUPQ2QDJCLWXUGO3/"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20230725-0006/"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "NETWORK",
              "availabilityImpact": "HIGH",
              "baseScore": 7.5,
              "baseSeverity": "HIGH",
              "confidentialityImpact": "NONE",
              "integrityImpact": "NONE",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2023-25193",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-03-25T20:22:18.099363Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-770",
                "description": "CWE-770 Allocation of Resources Without Limits or Throttling",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-03-25T20:23:16.167Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "hb-ot-layout-gsubgpos.hh in HarfBuzz through 6.0.0 allows attackers to trigger O(n^2) growth via consecutive marks during the process of looking back for base glyphs when attaching marks."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2023-07-25T00:00:00.000Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "url": "https://github.com/harfbuzz/harfbuzz/commit/85be877925ddbf34f74a1229f3ca1716bb6170dc"
        },
        {
          "url": "https://chromium.googlesource.com/chromium/src/+/e1f324aa681af54101c1f2d173d92adb80e37088/DEPS#361"
        },
        {
          "url": "https://github.com/harfbuzz/harfbuzz/blob/2822b589bc837fae6f66233e2cf2eef0f6ce8470/src/hb-ot-layout-gsubgpos.hh"
        },
        {
          "name": "FEDORA-2023-4e6353c6f7",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KWCHWSICWVZSAXP2YAXM65JC2GR53547/"
        },
        {
          "name": "FEDORA-2023-a48406ecd2",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YZ5M2GSAIHFPLHYJXUPQ2QDJCLWXUGO3/"
        },
        {
          "url": "https://security.netapp.com/advisory/ntap-20230725-0006/"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2023-25193",
    "datePublished": "2023-02-04T00:00:00.000Z",
    "dateReserved": "2023-02-04T00:00:00.000Z",
    "dateUpdated": "2025-03-25T20:23:16.167Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

suse-su-2023:3023-1

Vulnerability from csaf_suse

CVE-2023-22041 (GCVE-0-2023-22041)

Vulnerability from cvelistv5

CVE-2023-22045 (GCVE-0-2023-22045)

Vulnerability from cvelistv5

CVE-2023-22036 (GCVE-0-2023-22036)

Vulnerability from cvelistv5

CVE-2023-22006 (GCVE-0-2023-22006)

Vulnerability from cvelistv5

CVE-2023-22044 (GCVE-0-2023-22044)

Vulnerability from cvelistv5

CVE-2023-22049 (GCVE-0-2023-22049)

Vulnerability from cvelistv5

CVE-2023-25193 (GCVE-0-2023-25193)

Vulnerability from cvelistv5

Tags

Sightings

Nomenclature