CVE-2022-21476 - java-11-openjdk
Posted: 2022/05/12 10:50:01
Dear team,
RH released the CVE-2022-21476 classified as HIGH a couple of weeks ago, see https://access.redhat.com/errata/RHSA-2022:1487 .
According to https://security.snyk.io/vuln/SNYK-CENT ... RC-2773793 the fix will be implemented in java-11-openjdk-src version 1:11.0.15.0.9-2.el7_9 or higher, but the built package is not yet available in the repos, see e.g. https://pkgs.org/search/?q=java-11-openjdk-src.
Do you have an estimate on when this package will be released?
Thanks!
RH released the CVE-2022-21476 classified as HIGH a couple of weeks ago, see https://access.redhat.com/errata/RHSA-2022:1487 .
According to https://security.snyk.io/vuln/SNYK-CENT ... RC-2773793 the fix will be implemented in java-11-openjdk-src version 1:11.0.15.0.9-2.el7_9 or higher, but the built package is not yet available in the repos, see e.g. https://pkgs.org/search/?q=java-11-openjdk-src.
Do you have an estimate on when this package will be released?
Thanks!