Amazon Linux 2 Security Advisory: ALASCORRETTO8-2024-009
Advisory Release Date: 2024-01-17 07:27 Pacific
Advisory Updated Date: 2024-05-03 15:00 Pacific
FAQs regarding Amazon Linux ALAS/CVE Severity
2024-05-03: The severity of this advisory has been changed from important to low.
2024-05-02: CVE-2024-20918 was removed from this advisory.
2024-05-02: CVE-2024-20919 was removed from this advisory.
2024-05-02: CVE-2024-20921 was removed from this advisory.
2024-05-02: CVE-2024-20926 was removed from this advisory.
2024-05-02: CVE-2024-20945 was removed from this advisory.
2024-05-02: CVE-2024-20952 was removed from this advisory.
Affected Packages:
java-1.8.0-amazon-corretto
Note:
This advisory is applicable to Amazon Linux 2 - Corretto8 Extra. Visit this page to learn more about Amazon Linux 2 (AL2) Extras and this FAQ section for the difference between AL2 Core and AL2 Extras advisories.
Issue Correction:
Run yum update java-1.8.0-amazon-corretto to update your system.
aarch64:
java-1.8.0-amazon-corretto-1.8.0_402.b06-1.amzn2.aarch64
java-1.8.0-amazon-corretto-devel-1.8.0_402.b06-1.amzn2.aarch64
src:
java-1.8.0-amazon-corretto-1.8.0_402.b06-1.amzn2.src
x86_64:
java-1.8.0-amazon-corretto-1.8.0_402.b06-1.amzn2.x86_64
java-1.8.0-amazon-corretto-devel-1.8.0_402.b06-1.amzn2.x86_64