VYPR

apk package

chainguard/openjdk-11-openj9-default-policy

pkg:apk/chainguard/openjdk-11-openj9-default-policy

Vulnerabilities (548)

  • CVE-2019-2964Oct 16, 2019
    affected < 0.53.0-r0fixed 0.53.0-r0

    Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Concurrency). Supported versions that are affected are Java SE: 7u231, 8u221, 11.0.4 and 13; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows unauthenticated attacker with netwo

  • CVE-2019-2962Oct 16, 2019
    affected < 0.53.0-r0fixed 0.53.0-r0

    Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: 2D). Supported versions that are affected are Java SE: 7u231, 8u221, 11.0.4 and 13; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows unauthenticated attacker with network access

  • CVE-2019-2958Oct 16, 2019
    affected < 0.53.0-r0fixed 0.53.0-r0

    Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u231, 8u221, 11.0.4 and 13; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows unauthenticated attacker with network

  • CVE-2019-2949Oct 16, 2019
    affected < 0.53.0-r0fixed 0.53.0-r0

    Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Kerberos). Supported versions that are affected are Java SE: 7u231, 8u221, 11.0.4 and 13; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows unauthenticated attacker with network

  • CVE-2019-2945Oct 16, 2019
    affected < 0.53.0-r0fixed 0.53.0-r0

    Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Networking). Supported versions that are affected are Java SE: 7u231, 8u221, 11.0.4 and 13; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows unauthenticated attacker with networ

  • CVE-2019-2933Oct 16, 2019
    affected < 0.53.0-r0fixed 0.53.0-r0

    Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u231, 8u221, 11.0.4 and 13; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows unauthenticated attacker with network

  • CVE-2019-2894Oct 16, 2019
    affected < 0.53.0-r0fixed 0.53.0-r0

    Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Security). Supported versions that are affected are Java SE: 7u231, 8u221, 11.0.4 and 13; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows unauthenticated attacker with network

  • CVE-2019-2842Jul 23, 2019
    affected < 0.53.0-r0fixed 0.53.0-r0

    Vulnerability in the Java SE component of Oracle Java SE (subcomponent: JCE). The supported version that is affected is Java SE: 8u212. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful

  • CVE-2019-2816Jul 23, 2019
    affected < 0.53.0-r0fixed 0.53.0-r0

    Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Networking). Supported versions that are affected are Java SE: 7u221, 8u212, 11.0.3 and 12.0.1; Java SE Embedded: 8u211. Difficult to exploit vulnerability allows unauthenticated attacker wi

  • CVE-2019-2786Jul 23, 2019
    affected < 0.53.0-r0fixed 0.53.0-r0

    Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Security). Supported versions that are affected are Java SE: 8u212, 11.0.3 and 12.0.1; Java SE Embedded: 8u211. Difficult to exploit vulnerability allows unauthenticated attacker with networ

  • CVE-2019-2769Jul 23, 2019
    affected < 0.53.0-r0fixed 0.53.0-r0

    Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Utilities). Supported versions that are affected are Java SE: 7u221, 8u212, 11.0.3 and 12.0.1; Java SE Embedded: 8u211. Easily exploitable vulnerability allows unauthenticated attacker with

  • CVE-2019-2766Jul 23, 2019
    affected < 0.53.0-r0fixed 0.53.0-r0

    Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Networking). Supported versions that are affected are Java SE: 7u221, 8u212, 11.0.3 and 12.0.1; Java SE Embedded: 8u211. Difficult to exploit vulnerability allows unauthenticated attacker wi

  • CVE-2019-2762Jul 23, 2019
    affected < 0.53.0-r0fixed 0.53.0-r0

    Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Utilities). Supported versions that are affected are Java SE: 7u221, 8u212, 11.0.3 and 12.0.1; Java SE Embedded: 8u211. Easily exploitable vulnerability allows unauthenticated attacker with

  • CVE-2019-2745Jul 23, 2019
    affected < 0.53.0-r0fixed 0.53.0-r0

    Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Security). Supported versions that are affected are Java SE: 7u221, 8u212 and 11.0.3. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrastructure where Java SE executes

  • CVE-2019-2699Apr 23, 2019
    affected < 0.53.0-r0fixed 0.53.0-r0

    Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Windows DLL). The supported version that is affected is Java SE: 8u202. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Whi

  • CVE-2019-2698Apr 23, 2019
    affected < 0.53.0-r0fixed 0.53.0-r0

    Vulnerability in the Java SE component of Oracle Java SE (subcomponent: 2D). Supported versions that are affected are Java SE: 7u211 and 8u202. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Suc

  • CVE-2019-2697Apr 23, 2019
    affected < 0.53.0-r0fixed 0.53.0-r0

    Vulnerability in the Java SE component of Oracle Java SE (subcomponent: 2D). Supported versions that are affected are Java SE: 7u211 and 8u202. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Suc

  • CVE-2019-2684Apr 23, 2019
    affected < 0.53.0-r0fixed 0.53.0-r0

    Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: RMI). Supported versions that are affected are Java SE: 7u211, 8u202, 11.0.2 and 12; Java SE Embedded: 8u201. Difficult to exploit vulnerability allows unauthenticated attacker with network

  • CVE-2019-2602Apr 23, 2019
    affected < 0.53.0-r0fixed 0.53.0-r0

    Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 7u211, 8u202, 11.0.2 and 12; Java SE Embedded: 8u201. Easily exploitable vulnerability allows unauthenticated attacker with netw

  • CVE-2019-7317MedFeb 4, 2019
    affected < 0.53.0-r0fixed 0.53.0-r0

    png_image_free in png.c in libpng 1.6.x before 1.6.37 has a use-after-free because png_image_free_function is called under png_safe_execute.

Page 9 of 28