New security scans detected java vulnerability
Article ID: 238801
Updated On:
Products
CA Performance Management - Usage and Administration
Issue/Introduction
Need to ask when a version will be available that contains "OpenJDK version greater than 11.0.12"
Cause
A version above 11.0.12 was not introduced until PM 21.2.9+ - 11.0.14_1 (adoptopenjdk) (PC/DA/DC)
Environment
Release : 21.2.9+
Component :
Resolution
Upgrade to Performance Management 21.2.9
In DX NetOps Performance Management 22.2.2 (in September 2022) we ship the jdk-11.0.16+8
These are the specific CVE's it should address:
- CVE-2022-21449
- CVE-2022-21476
Feedback
Yes
No
Powered by
