IcedTea: Multiple Vulnerabilities

IcedTea: Multiple Vulnerabilities Multiple vulnerabilities have been found in IcedTea, the worst of which could result in arbitrary code execution. icedtea,icedtea-bin 2024-09-28 2024-09-28 732628 803608 877599 local 3.21.0 3.16.0-r2

IcedTea’s aim is to provide OpenJDK in a form suitable for easy configuration, compilation and distribution with the primary goal of allowing inclusion in GNU/Linux distributions.

Multiple vulnerabilities have been discovered in IcedTea. Please review the CVE identifiers referenced below for details.

Please review the referenced CVE identifiers for details.

There is no known workaround at this time.

Gentoo has discontinued support for IcedTea. We recommend that users unmerge it:


          # emerge --sync
          # emerge --ask --depclean "dev-java/icedtea" "dev-java/icedtea-bin"

CVE-2020-14556 CVE-2020-14562 CVE-2020-14573 CVE-2020-14577 CVE-2020-14578 CVE-2020-14579 CVE-2020-14581 CVE-2020-14583 CVE-2020-14593 CVE-2020-14621 CVE-2020-14664 CVE-2020-14779 CVE-2020-14781 CVE-2020-14782 CVE-2020-14792 CVE-2020-14796 CVE-2020-14797 CVE-2020-14798 CVE-2020-14803 CVE-2021-2341 CVE-2021-2369 CVE-2021-2388 CVE-2021-2432 CVE-2021-35550 CVE-2021-35556 CVE-2021-35559 CVE-2021-35561 CVE-2021-35564 CVE-2021-35565 CVE-2021-35567 CVE-2021-35578 CVE-2021-35586 CVE-2021-35588 CVE-2021-35603 CVE-2022-21618 CVE-2022-21619 CVE-2022-21624 CVE-2022-21626 CVE-2022-21628 CVE-2022-39399 CVE-2023-21830 CVE-2023-21835 CVE-2023-21843 ajak graaff