RedHat has issued several advisories: https://access.redhat.com/errata/RHSA-2021:3893 (java-1.8.0-openjdk) https://access.redhat.com/errata/RHSA-2021:3891 (java-11-openjdk) Moreover, for Cauldron, Fedora updated java-latest-openjdk to 17.0.1+12. Corresponding Oracle CPU: https://www.oracle.com/security-alerts/cpuoct2021.html#AppendixJAVA
Source RPM: (none) => java-1.8.0-openjdk, java-11-openjdk, java-latest-openjdkWhiteboard: (none) => MGA8TOO
I suspect that java@ml.mageia.org = neoclust.
Assignee: bugsquad => java
yes that's me :-) Btw for java 17, i added in the svn but i fail to build it.
CC: (none) => mageia
New java 8/11 are now in the BS for mageia 8 For java 17 i don't hold this bug for this, the work is in progress. src: - java-11-openjdk-11.0.13.0.8-2.1.mga8 - java-1.8.0-openjdk-1.8.0.312.b07-2.1.mga8
Version: Cauldron => 8Assignee: java => qa-bugsWhiteboard: MGA8TOO => (none)
Summary: java-1.8.0-openjdk, java-11-openjdk, java-latest-openjdk new security issues => java-1.8.0-openjdk, java-11-openjdk new security issuesSource RPM: java-1.8.0-openjdk, java-11-openjdk, java-latest-openjdk => java-1.8.0-openjdk, java-11-openjdk
This also fixes Bug 29624 - Java-11 update packaging bug makes system installs and upgrades to fail. So closing that one as a dupe and carry over high priority and the test needed for that issue here: --- Try network install with update repo but not testing repo and see it fail early resolving dependencies, see attachment at https://bugs.mageia.org/show_bug.cgi?id=29624#c1. Then with adding updates_testing enabled it should work. Preferably testing both x86 and i586.
CC: (none) => friSummary: java-1.8.0-openjdk, java-11-openjdk new security issues => java-1.8.0-openjdk, java-11-openjdk new security issues & packaging bug fix
Priority: Normal => High
*** Bug 29624 has been marked as a duplicate of this bug. ***
CC: (none) => joselpddj
Summary: java-1.8.0-openjdk, java-11-openjdk new security issues & packaging bug fix => java-1.8.0-openjdk, java-11-openjdk new security issues & urgent packaging bug fix - blocking update and install
MGA8-64 Plasma on Lenovo B50 I must confess (English is not my mother tongue) that I don't have a clue what this is all about. Netinstall is Chinese for me. Anyway, the update should work on a running installation, but no: when selecting java-11-openjdk-11.0.13.0.8-2.1.mga8, I get: Sorry, the following package can not be selected: - java-11-openjdk-11.0.13.0.8-2.1.mga8.x86_64 (because of unfulfilled java-11-openjdk-headless(x86-64)[== 1:11.0.13.0.8-2.1.mga8])
CC: (none) => herman.viaene
strange i can see: java-11-openjdk-headless-11.0.13.0.8-2.1.mga8.x86_64.rpm in the repository what happens if you install this one directly ? urpmi java-11-openjdk-headless
@Nicolas It might be not so strange: I update from QARepo, and in there I anly put the rpm's listed above. So I guess from what you're mentioning now, that there are more rpm's involved than the two listed in Comment 3, correct????
Herman, try the list from http://madb.mageia.org/tools/listRpmsForQaBug/bugnum/29590/application/0
CC: (none) => andrewsfarm
Tested in VirtualBox Plasma system Used the x86_64 list from the link in Comment 9 in qarepo to download 28 packages. Then: The following 4 packages are going to be installed: - java-1.8.0-openjdk-1.8.0.312.b07-2.1.mga8.x86_64 - java-1.8.0-openjdk-headless-1.8.0.312.b07-2.1.mga8.x86_64 - java-11-openjdk-11.0.13.0.8-2.1.mga8.x86_64 - java-11-openjdk-headless-11.0.13.0.8-2.1.mga8.x86_64 No installation issues. For each package I was given a choice to accept an rpmnew as the main file, or do nothing, and in this case I accepted all of them. Using urmpq, I see that Libreoffice requires java-11-openjdk, so I ran each component without issue, even loading a .doc file into Writer. So, for use in an existing MGA8 install, this update looks good. I do not have time to test the net-install problem right now, but will try to try it later today.
My first attempt at the net-install test in Vbox did not result in showing the failure, so I looked at Bug 29624 for more information. There I learned that the fault shows up most reliably when both 64-bit and 32-bit repos are selected. I went back and did that, and did see the fault. But there I'm stuck. I've done several net installs over the last 2-3 years, so I'm familiar with the procedure. But try as I might, I see nowhere where I have an opportunity to activate any of the updates_testing repos for the install. Core, nonfree, tainted, yes; variuos updates, yes; 32-bit, yes. But no way for updates_testing for any of them. Could someone explain how to accomplish that?
Um. I was just assuming it was/is possible... Yes how to test?
I did some more investigation, put some more thought into it, and I suspect the best solution is to separate these two bugs again (is that possible? They aren't really duplicates. We are actually solving two issues with one set of updated packages.), then test for this one, including 32-bits, and if OK for the security problem push it. Then, check to see if the net-install problem of Bug 29624 goes away as a result. If so, we close that bug, too. If not, we continue to look for the solution for that issue.
List of rpms from http://madb.mageia.org/tools/listRpmsForQaBug/bugnum/29590/application/0 i586: java-1.8.0-openjdk-1.8.0.312.b07-2.1.mga8.i586.rpm java-1.8.0-openjdk-demo-1.8.0.312.b07-2.1.mga8.i586.rpm java-1.8.0-openjdk-demo-slowdebug-1.8.0.312.b07-2.1.mga8.i586.rpm java-1.8.0-openjdk-devel-1.8.0.312.b07-2.1.mga8.i586.rpm java-1.8.0-openjdk-devel-slowdebug-1.8.0.312.b07-2.1.mga8.i586.rpm java-1.8.0-openjdk-headless-1.8.0.312.b07-2.1.mga8.i586.rpm java-1.8.0-openjdk-headless-slowdebug-1.8.0.312.b07-2.1.mga8.i586.rpm java-1.8.0-openjdk-javadoc-1.8.0.312.b07-2.1.mga8.noarch.rpm java-1.8.0-openjdk-javadoc-zip-1.8.0.312.b07-2.1.mga8.noarch.rpm java-1.8.0-openjdk-slowdebug-1.8.0.312.b07-2.1.mga8.i586.rpm java-1.8.0-openjdk-src-1.8.0.312.b07-2.1.mga8.i586.rpm java-1.8.0-openjdk-src-slowdebug-1.8.0.312.b07-2.1.mga8.i586.rpm java-11-openjdk-11.0.13.0.8-2.1.mga8.i586.rpm java-11-openjdk-demo-11.0.13.0.8-2.1.mga8.i586.rpm java-11-openjdk-demo-slowdebug-11.0.13.0.8-2.1.mga8.i586.rpm java-11-openjdk-devel-11.0.13.0.8-2.1.mga8.i586.rpm java-11-openjdk-devel-slowdebug-11.0.13.0.8-2.1.mga8.i586.rpm java-11-openjdk-headless-11.0.13.0.8-2.1.mga8.i586.rpm java-11-openjdk-headless-slowdebug-11.0.13.0.8-2.1.mga8.i586.rpm java-11-openjdk-javadoc-11.0.13.0.8-2.1.mga8.i586.rpm java-11-openjdk-javadoc-zip-11.0.13.0.8-2.1.mga8.i586.rpm java-11-openjdk-jmods-11.0.13.0.8-2.1.mga8.i586.rpm java-11-openjdk-jmods-slowdebug-11.0.13.0.8-2.1.mga8.i586.rpm java-11-openjdk-slowdebug-11.0.13.0.8-2.1.mga8.i586.rpm java-11-openjdk-src-11.0.13.0.8-2.1.mga8.i586.rpm java-11-openjdk-src-slowdebug-11.0.13.0.8-2.1.mga8.i586.rpm java-11-openjdk-static-libs-11.0.13.0.8-2.1.mga8.i586.rpm java-11-openjdk-static-libs-slowdebug-11.0.13.0.8-2.1.mga8.i586.rpm x86_64: java-1.8.0-openjdk-1.8.0.312.b07-2.1.mga8.x86_64.rpm java-1.8.0-openjdk-demo-1.8.0.312.b07-2.1.mga8.x86_64.rpm java-1.8.0-openjdk-demo-fastdebug-1.8.0.312.b07-2.1.mga8.x86_64.rpm java-1.8.0-openjdk-demo-slowdebug-1.8.0.312.b07-2.1.mga8.x86_64.rpm java-1.8.0-openjdk-devel-1.8.0.312.b07-2.1.mga8.x86_64.rpm java-1.8.0-openjdk-devel-fastdebug-1.8.0.312.b07-2.1.mga8.x86_64.rpm java-1.8.0-openjdk-devel-slowdebug-1.8.0.312.b07-2.1.mga8.x86_64.rpm java-1.8.0-openjdk-fastdebug-1.8.0.312.b07-2.1.mga8.x86_64.rpm java-1.8.0-openjdk-headless-1.8.0.312.b07-2.1.mga8.x86_64.rpm java-1.8.0-openjdk-headless-fastdebug-1.8.0.312.b07-2.1.mga8.x86_64.rpm java-1.8.0-openjdk-headless-slowdebug-1.8.0.312.b07-2.1.mga8.x86_64.rpm java-1.8.0-openjdk-javadoc-1.8.0.312.b07-2.1.mga8.noarch.rpm java-1.8.0-openjdk-javadoc-zip-1.8.0.312.b07-2.1.mga8.noarch.rpm java-1.8.0-openjdk-openjfx-1.8.0.312.b07-2.1.mga8.x86_64.rpm java-1.8.0-openjdk-openjfx-devel-1.8.0.312.b07-2.1.mga8.x86_64.rpm java-1.8.0-openjdk-openjfx-devel-fastdebug-1.8.0.312.b07-2.1.mga8.x86_64.rpm java-1.8.0-openjdk-openjfx-devel-slowdebug-1.8.0.312.b07-2.1.mga8.x86_64.rpm java-1.8.0-openjdk-openjfx-fastdebug-1.8.0.312.b07-2.1.mga8.x86_64.rpm java-1.8.0-openjdk-openjfx-slowdebug-1.8.0.312.b07-2.1.mga8.x86_64.rpm java-1.8.0-openjdk-slowdebug-1.8.0.312.b07-2.1.mga8.x86_64.rpm java-1.8.0-openjdk-src-1.8.0.312.b07-2.1.mga8.x86_64.rpm java-1.8.0-openjdk-src-fastdebug-1.8.0.312.b07-2.1.mga8.x86_64.rpm java-1.8.0-openjdk-src-slowdebug-1.8.0.312.b07-2.1.mga8.x86_64.rpm java-11-openjdk-11.0.13.0.8-2.1.mga8.x86_64.rpm java-11-openjdk-demo-11.0.13.0.8-2.1.mga8.x86_64.rpm java-11-openjdk-demo-fastdebug-11.0.13.0.8-2.1.mga8.x86_64.rpm java-11-openjdk-demo-slowdebug-11.0.13.0.8-2.1.mga8.x86_64.rpm java-11-openjdk-devel-11.0.13.0.8-2.1.mga8.x86_64.rpm java-11-openjdk-devel-fastdebug-11.0.13.0.8-2.1.mga8.x86_64.rpm java-11-openjdk-devel-slowdebug-11.0.13.0.8-2.1.mga8.x86_64.rpm java-11-openjdk-fastdebug-11.0.13.0.8-2.1.mga8.x86_64.rpm java-11-openjdk-headless-11.0.13.0.8-2.1.mga8.x86_64.rpm java-11-openjdk-headless-fastdebug-11.0.13.0.8-2.1.mga8.x86_64.rpm java-11-openjdk-headless-slowdebug-11.0.13.0.8-2.1.mga8.x86_64.rpm java-11-openjdk-javadoc-11.0.13.0.8-2.1.mga8.x86_64.rpm java-11-openjdk-javadoc-zip-11.0.13.0.8-2.1.mga8.x86_64.rpm java-11-openjdk-jmods-11.0.13.0.8-2.1.mga8.x86_64.rpm java-11-openjdk-jmods-fastdebug-11.0.13.0.8-2.1.mga8.x86_64.rpm java-11-openjdk-jmods-slowdebug-11.0.13.0.8-2.1.mga8.x86_64.rpm java-11-openjdk-slowdebug-11.0.13.0.8-2.1.mga8.x86_64.rpm java-11-openjdk-src-11.0.13.0.8-2.1.mga8.x86_64.rpm java-11-openjdk-src-fastdebug-11.0.13.0.8-2.1.mga8.x86_64.rpm java-11-openjdk-src-slowdebug-11.0.13.0.8-2.1.mga8.x86_64.rpm java-11-openjdk-static-libs-11.0.13.0.8-2.1.mga8.x86_64.rpm java-11-openjdk-static-libs-fastdebug-11.0.13.0.8-2.1.mga8.x86_64.rpm java-11-openjdk-static-libs-slowdebug-11.0.13.0.8-2.1.mga8.x86_64.rpm
The way I normally use for testing updates with netinstall is to create a minimal install, install the packages to be tested, then do the netinstall over top of the minimal install, without formatting the target filesystems. It can also be done when using a local mirror, moving the testing packages to the updates repos, and regenerating the hdlists, to simulate the packages having already been pushed.
CC: (none) => davidwhodgins
That may be one way Dave. However i agree with Thomas A. We should push this update quickly anyway for security reasons. We can release this update, then test if the install/upgrade problem got solved, without using an unaltered method = best test. So I reopen the other bug, set it depending on this one.
Blocks: (none) => 29624
mga8 64 Plasma: Clean update and keep using it on my workstation. Tested this far: § LibreOffice 7.2.4.1 runs OK - I see from its setting it use 11.0.13, but I dont know when/if it really runs on it in my usage. § My invoicing program FriBok is run by Java 1.0.8 perfectly it seems.
Installed all except debug ans src's listed in comment 14. Ref bug 26960 for tests and bug 20220 for testfile. $ java -version openjdk version "11.0.13" 2021-10-19 LTS OpenJDK Runtime Environment 18.9 (build 11.0.13+8-LTS) OpenJDK 64-Bit Server VM 18.9 (build 11.0.13+8-LTS, mixed mode, sharing) $ javac -version javac 11.0.13 $ javac helloworld.java helloworld.java:2: error: package javafx.application does not exist import javafx.application.Application; ^ helloworld.java:3: error: package javafx.event does not exist import javafx.event.ActionEvent; and a load more So still something missing???
JavaFX isn't a standard part of Java.
(In reply to Herman Viaene from comment #18) > Installed all except debug ans src's listed in comment 14. Sorry about that, Herman. I was trying to be helpful, but didn't pay enough attention to what I was doing. Here's a revised list: i586: java-1.8.0-openjdk-1.8.0.312.b07-2.1.mga8.i586.rpm java-1.8.0-openjdk-demo-1.8.0.312.b07-2.1.mga8.i586.rpm java-1.8.0-openjdk-devel-1.8.0.312.b07-2.1.mga8.i586.rpm java-1.8.0-openjdk-headless-1.8.0.312.b07-2.1.mga8.i586.rpm java-1.8.0-openjdk-javadoc-1.8.0.312.b07-2.1.mga8.noarch.rpm java-1.8.0-openjdk-javadoc-zip-1.8.0.312.b07-2.1.mga8.noarch.rpm java-1.8.0-openjdk-openjfx-1.8.0.312.b07-2.1.mga8.x86_64.rpm java-1.8.0-openjdk-openjfx-devel-1.8.0.312.b07-2.1.mga8.x86_64.rpm java-11-openjdk-11.0.13.0.8-2.1.mga8.i586.rpm java-11-openjdk-demo-11.0.13.0.8-2.1.mga8.i586.rpm java-11-openjdk-devel-11.0.13.0.8-2.1.mga8.i586.rpm java-11-openjdk-headless-11.0.13.0.8-2.1.mga8.i586.rpm java-11-openjdk-javadoc-11.0.13.0.8-2.1.mga8.i586.rpm java-11-openjdk-javadoc-zip-11.0.13.0.8-2.1.mga8.i586.rpm java-11-openjdk-jmods-11.0.13.0.8-2.1.mga8.i586.rpm java-11-openjdk-static-libs-11.0.13.0.8-2.1.mga8.i586.rpm x86_64: java-1.8.0-openjdk-1.8.0.312.b07-2.1.mga8.x86_64.rpm java-1.8.0-openjdk-demo-1.8.0.312.b07-2.1.mga8.x86_64.rpm java-1.8.0-openjdk-devel-1.8.0.312.b07-2.1.mga8.x86_64.rpm java-1.8.0-openjdk-headless-1.8.0.312.b07-2.1.mga8.x86_64.rpm java-1.8.0-openjdk-javadoc-1.8.0.312.b07-2.1.mga8.noarch.rpm java-1.8.0-openjdk-javadoc-zip-1.8.0.312.b07-2.1.mga8.noarch.rpm java-1.8.0-openjdk-openjfx-1.8.0.312.b07-2.1.mga8.x86_64.rpm java-1.8.0-openjdk-openjfx-devel-1.8.0.312.b07-2.1.mga8.x86_64.rpm java-11-openjdk-11.0.13.0.8-2.1.mga8.x86_64.rpm java-11-openjdk-demo-11.0.13.0.8-2.1.mga8.x86_64.rpm java-11-openjdk-devel-11.0.13.0.8-2.1.mga8.x86_64.rpm java-11-openjdk-headless-11.0.13.0.8-2.1.mga8.x86_64.rpm java-11-openjdk-javadoc-11.0.13.0.8-2.1.mga8.x86_64.rpm java-11-openjdk-javadoc-zip-11.0.13.0.8-2.1.mga8.x86_64.rpm java-11-openjdk-jmods-11.0.13.0.8-2.1.mga8.x86_64.rpm java-11-openjdk-static-libs-11.0.13.0.8-2.1.mga8.x86_64.rpm
Messed up yet again. The i586 list should be (I hope); java-1.8.0-openjdk-1.8.0.312.b07-2.1.mga8.i586.rpm java-1.8.0-openjdk-demo-1.8.0.312.b07-2.1.mga8.i586.rpm java-1.8.0-openjdk-devel-1.8.0.312.b07-2.1.mga8.i586.rpm java-1.8.0-openjdk-headless-1.8.0.312.b07-2.1.mga8.i586.rpm java-1.8.0-openjdk-javadoc-1.8.0.312.b07-2.1.mga8.noarch.rpm java-1.8.0-openjdk-javadoc-zip-1.8.0.312.b07-2.1.mga8.noarch.rpm java-11-openjdk-11.0.13.0.8-2.1.mga8.i586.rpm java-11-openjdk-demo-11.0.13.0.8-2.1.mga8.i586.rpm java-11-openjdk-devel-11.0.13.0.8-2.1.mga8.i586.rpm java-11-openjdk-headless-11.0.13.0.8-2.1.mga8.i586.rpm java-11-openjdk-javadoc-11.0.13.0.8-2.1.mga8.i586.rpm java-11-openjdk-javadoc-zip-11.0.13.0.8-2.1.mga8.i586.rpm java-11-openjdk-jmods-11.0.13.0.8-2.1.mga8.i586.rpm java-11-openjdk-static-libs-11.0.13.0.8-2.1.mga8.i586.rpm Last time I try to be helpful in this way.
Dell Inspiron 5100, 32-bit Xfce system. Used the (finally correct) list in Comment 21 with qarepo to download the packages. No installation issues. Used Libreoffice for testing, as the only application using these packages where I am at all competent. Tried Writer, Calc, Draw, and Impress, with no issues noted. These packages have been pushed before on a clean install, so I am going to do that now. OKing and validating.
CC: (none) => sysadmin-bugsKeywords: (none) => validated_updateWhiteboard: (none) => MGA8-64-OK MGA8-32-OK
Keywords: (none) => advisory
An update for this issue has been pushed to the Mageia Updates repository. https://advisories.mageia.org/MGASA-2021-0542.html
Resolution: (none) => FIXEDStatus: NEW => RESOLVED