+ OpenJDK, IcedTea: Multiple vulnerabilities
+ Multiple vulnerabilities have been found in OpenJDK and IcedTea,
+ the worst of which could result in the arbitrary execution of code.
+
+ icedtea
+ 2020-06-15
+ 2020-06-15
+ 718720
+ 720690
+ remote
+
+
+ 8.252_p09
+ 8.252_p09
+
+
+ 8.252_p09
+ 8.252_p09
+
+
+ 3.16.0
+ 3.16.0
+
+
+
+ OpenJDK is a free and open-source implementation of the Java Platform,
+ Standard Edition.
+
+
+ IcedTea’s aim is to provide OpenJDK in a form suitable for easy
+ configuration, compilation and distribution with the primary goal of
+ allowing inclusion in GNU/Linux distributions.
+
+
+
+ Multiple vulnerabilities have been discovered in OpenJDK and IcedTea.
+ Please review the CVE identifiers referenced below for details.
+
+
+
+ Please review the referenced CVE identifiers for details.
+
+
+ There is no known workaround at this time.
+
+
+ All OpenJDK binary users should upgrade to the latest version:
+
+
+ # emerge --sync
+ # emerge --ask --oneshot --verbose ">=dev-java/openjdk-bin-8.252_p09"
+
+
+ All OpenJDK JRE binary users should upgrade to the latest version:
+
+
+ # emerge --sync
+ # emerge --ask --oneshot --verbose
+ ">=dev-java/openjdk-jre-bin-8.252_p09"
+
+
+ All IcedTea binary users should upgrade to the latest version:
+
+
+ # emerge --sync
+ # emerge --ask --oneshot --verbose ">=dev-java/icedtea-bin-3.16.0"
+
+
+
+ CVE-2020-2585
+ CVE-2020-2585
+ CVE-2020-2755
+ CVE-2020-2755
+ CVE-2020-2756
+ CVE-2020-2756
+ CVE-2020-2757
+ CVE-2020-2757
+ CVE-2020-2773
+ CVE-2020-2773
+ CVE-2020-2781
+ CVE-2020-2781
+ CVE-2020-2800
+ CVE-2020-2800
+ CVE-2020-2803
+ CVE-2020-2803
+ CVE-2020-2805
+ CVE-2020-2805
+ CVE-2020-2830
+ CVE-2020-2830
+
+ sam_c
+ sam_c
+
diff --git a/metadata/glsa/glsa-202006-23.xml b/metadata/glsa/glsa-202006-23.xml
new file mode 100644
index 000000000000..7fb7e375cbc8
--- /dev/null
+++ b/metadata/glsa/glsa-202006-23.xml
@@ -0,0 +1,50 @@
+
+
+