Search CVE reports
341 – 350 of 444 results
Some fixes available 1 of 38
The WLS Security component in Oracle WebLogic Server 10.3.6.0, 12.1.2.0, 12.1.3.0, and 12.2.1.0 allows remote attackers to execute arbitrary commands via a crafted serialized Java object in T3 protocol traffic to TCP port 7001,...
6 affected packages
openjdk-7, libcommons-collections4-java, libxalan2-java, libcommons-collections3-java, openjdk-6, openjdk-8
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| openjdk-7 | Not in release | Not in release | Not in release | Not in release |
| libcommons-collections4-java | Not affected | Not affected | Not affected | Not affected |
| libxalan2-java | Not affected | Not affected | Not affected | Not affected |
| libcommons-collections3-java | Not affected | Not affected | Not affected | Not affected |
| openjdk-6 | Not in release | Not in release | Not in release | Not in release |
| openjdk-8 | Ignored | Ignored | Ignored | Ignored |
Multiple buffer overflows in the (1) png_set_PLTE and (2) png_get_PLTE functions in libpng before 1.0.64, 1.1.x and 1.2.x before 1.2.54, 1.3.x and 1.4.x before 1.4.17, 1.5.x before 1.5.24, and 1.6.x before 1.6.19 allow remote...
7 affected packages
firefox, thunderbird, chromium-browser, libpng, openjdk-6...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| firefox | — | — | — | — |
| thunderbird | — | — | — | — |
| chromium-browser | — | — | — | — |
| libpng | — | — | — | — |
| openjdk-6 | — | — | — | — |
| openjdk-7 | — | — | — | — |
| openjdk-8 | — | — | — | — |
A .desktop file in the Debian openjdk-7 package 7u79-2.5.5-1~deb8u1 includes a MIME type registration that is added to /etc/mailcap by mime-support, which allows remote attackers to execute arbitrary code via a JAR file.
4 affected packages
icedtea-web, openjdk-6, openjdk-7, openjdk-8
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| icedtea-web | — | — | — | — |
| openjdk-6 | — | — | — | — |
| openjdk-7 | — | — | — | — |
| openjdk-8 | — | — | — | — |
Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60 allows remote attackers to affect integrity via unknown vectors related to Deployment.
3 affected packages
openjdk-6, openjdk-8, openjdk-7
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| openjdk-6 | — | — | — | — |
| openjdk-8 | — | — | — | — |
| openjdk-7 | — | — | — | — |
Unspecified vulnerability in Oracle Java SE 7u85 and 8u60 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.
3 affected packages
openjdk-6, openjdk-7, openjdk-8
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| openjdk-6 | — | — | — | — |
| openjdk-7 | — | — | — | — |
| openjdk-8 | — | — | — | — |
Some fixes available 9 of 10
Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60; Java SE Embedded 8u51; and JRockit R28.3.7 allows remote attackers to affect availability via vectors related to JAXP, a different vulnerability than CVE-2015-4803...
3 affected packages
openjdk-6, openjdk-7, openjdk-8
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| openjdk-6 | — | — | — | — |
| openjdk-7 | — | — | — | — |
| openjdk-8 | — | — | — | — |
Some fixes available 9 of 10
Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect confidentiality via vectors related to RMI.
3 affected packages
openjdk-6, openjdk-7, openjdk-8
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| openjdk-6 | — | — | — | — |
| openjdk-7 | — | — | — | — |
| openjdk-8 | — | — | — | — |
Some fixes available 9 of 10
Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60; Java SE Embedded 8u51; and JRockit R28.3.7 allows remote attackers to affect availability via vectors related to JAXP, a different vulnerability than CVE-2015-4803...
3 affected packages
openjdk-8, openjdk-6, openjdk-7
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| openjdk-8 | — | — | — | — |
| openjdk-6 | — | — | — | — |
| openjdk-7 | — | — | — | — |
Some fixes available 9 of 10
Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to RMI, a different vulnerability...
3 affected packages
openjdk-6, openjdk-7, openjdk-8
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| openjdk-6 | — | — | — | — |
| openjdk-7 | — | — | — | — |
| openjdk-8 | — | — | — | — |
Some fixes available 9 of 10
Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect availability via vectors related to CORBA.
3 affected packages
openjdk-8, openjdk-6, openjdk-7
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| openjdk-8 | — | — | — | — |
| openjdk-6 | — | — | — | — |
| openjdk-7 | — | — | — | — |