search cancel

New security scans detected java vulnerability

book

Article ID: 238801

calendar_today

Updated On:

Products

CA Performance Management - Usage and Administration

Issue/Introduction

Need to ask when a version will be available that contains "OpenJDK version greater than 11.0.12" 

Cause


A version above 11.0.12 was not introduced until PM 21.2.9+ - 11.0.14_1 (adoptopenjdk) (PC/DA/DC)

Environment

Release : 21.2.9+

Component :

Resolution

Upgrade to Performance Management 21.2.9

 

In DX NetOps Performance Management 22.2.2 (in September 2022) we ship thjdk-11.0.16+8 

These are the specific CVE's it should address:

  • CVE-2022-21449
  • CVE-2022-21476