ALAS2-2020-1410

Amazon Linux 2 Security Advisory: ALAS-2020-1410
Advisory Release Date: 2020-04-14 23:16 Pacific
Advisory Updated Date: 2020-04-15 15:15 Pacific

Severity: Important

References: CVE-2020-2754 CVE-2020-2755 CVE-2020-2756 CVE-2020-2757 CVE-2020-2767 CVE-2020-2773 CVE-2020-2778 CVE-2020-2781 CVE-2020-2800 CVE-2020-2803 CVE-2020-2805 CVE-2020-2816 CVE-2020-2830
FAQs regarding Amazon Linux ALAS/CVE Severity

Issue Overview:

Further information about this update can be found in the Corretto 11 change log (https://github.com/corretto/corretto-11/blob/develop/CHANGELOG.md)

Affected Packages:

java-11-amazon-corretto

Note:

This advisory is applicable to Amazon Linux 2 (AL2) Core repository. Visit this FAQ section for the difference between AL2 Core and AL2 Extras advisories.

Issue Correction:
Run yum update java-11-amazon-corretto to update your system.

New Packages:

aarch64:
    java-11-amazon-corretto-11.0.7+10-1.amzn2.aarch64
    java-11-amazon-corretto-headless-11.0.7+10-1.amzn2.aarch64
    java-11-amazon-corretto-javadoc-11.0.7+10-1.amzn2.aarch64

src:
    java-11-amazon-corretto-11.0.7+10-1.amzn2.src

x86_64:
    java-11-amazon-corretto-11.0.7+10-1.amzn2.x86_64
    java-11-amazon-corretto-headless-11.0.7+10-1.amzn2.x86_64
    java-11-amazon-corretto-javadoc-11.0.7+10-1.amzn2.x86_64

Additional References

Red Hat: CVE-2020-2754, CVE-2020-2755, CVE-2020-2756, CVE-2020-2757, CVE-2020-2767, CVE-2020-2773, CVE-2020-2778, CVE-2020-2781, CVE-2020-2800, CVE-2020-2803, CVE-2020-2805, CVE-2020-2816, CVE-2020-2830

Mitre: CVE-2020-2754, CVE-2020-2755, CVE-2020-2756, CVE-2020-2757, CVE-2020-2767, CVE-2020-2773, CVE-2020-2778, CVE-2020-2781, CVE-2020-2800, CVE-2020-2803, CVE-2020-2805, CVE-2020-2816, CVE-2020-2830

Select your cookie preferences

Customize cookie preferences

Essential

Performance

Functional

Advertising

ALAS2-2020-1410

Additional References