JDK vulnerabilities fixed by version 8.0.401

search cancel

JDK vulnerabilities fixed by version 8.0.401

book

Article ID: 279290

calendar_today

Updated On: 02-21-2024

Products

CA Identity Suite

Issue/Introduction

The following vulnerabilities are reported by a security scan:

CVE-2024-20918 CVE-2024-20919 CVE-2024-20921 CVE-2024-20922 CVE-2024-20923 CVE-2024-20925 CVE-2024-20926 CVE-2024-20932 CVE-2024-20945 CVE-2024-20952

Environment

IGA 14.5, including Identity Portal, Identity Governance, Identity Manager.

Resolution

All the CVEs are resolved by applying JDK 8.0.401 or higher.

If running IGA 14.5 vAPP, apply the hotfix HF_VA-14.5.0-20240213152704-AOJDK18402.tgz.

For non-vAPP (standalone) Identity Governance and Administration components, manually apply JDK 8.0.401 or higher.

Additional Information

The hotfix, HF_VA-14.5.0-20240213152704-AOJDK18402.tgz, is planned to be included in vAPP 14.5 CP1.

Attachments

HF_VA-14.5.0-20240213152704-AOJDK18402.tgz.gpg get_app

Feedback

Was this article helpful?

thumb_up Yes

thumb_down No