You are here
Oracle CPU January 2021 - Airlock Gateway and IAM
Submitted on 25. January 2021 - 15:38 by bgre.
Last update on 25. January 2021 - 17:16.
Last update on 25. January 2021 - 17:16.
IDs:
CVE-2020-14803
Keywords:
java, cpu, Oracle Critical Patch Update
Description:
The Oracle Critical Patch Update for January 2021 includes updates for Java SE [1] that fix 8 Java SE vulnerabilities.
Airlock Gateway uses Java in the Configuration Center and in several add-on modules.
Airlock Login/IAM before version 7.0 relies on a separately installed Java environment and the Java runtime environment is maintained by the system administrator.
No action required for Airlock Gateway and Login/IAM.
Details:
CVE-2020-14803
Does not affect Java deployments that load and run only trusted code.
Resolution:
General Advice: We strongly recommend to update all client deployments of Java and uninstalling Java from clients where it is not needed.
Airlock Vulnerability Status:
Does not affect Airlock
Back-end Vulnerability Status:
No action required