VYPR

apk package

chainguard/openjdk-21-openj9-dbg

pkg:apk/chainguard/openjdk-21-openj9-dbg

Vulnerabilities (609)

  • CVE-2011-3545Oct 19, 2011
    affected < 0.53.0-r0fixed 0.53.0-r0

    Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 6 Update 27 and earlier, 5.0 Update 31 and earlier, and 1.4.2_33 and earlier, and JRockit R28.1.4 and earlier, allows remote attackers to affect confidentiality, integrity, and avail

  • CVE-2011-3544CriKEVOct 19, 2011
    affected < 0.48.0-r2fixed 0.48.0-r2

    Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7 and 6 Update 27 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vector

  • CVE-2011-3389Sep 6, 2011
    affected < 0.53.0-r0fixed 0.53.0-r0

    The SSL protocol, as used in certain configurations in Microsoft Windows and Microsoft Internet Explorer, Mozilla Firefox, Google Chrome, Opera, and other products, encrypts data by using CBC mode with chained initialization vectors, which allows man-in-the-middle attackers to ob

  • CVE-2011-0871Jun 14, 2011
    affected < 0.53.0-r0fixed 0.53.0-r0

    Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integ

  • CVE-2011-0867Jun 14, 2011
    affected < 0.53.0-r0fixed 0.53.0-r0

    Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via un

  • CVE-2011-0865Jun 14, 2011
    affected < 0.53.0-r0fixed 0.53.0-r0

    Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect integrity via unknown

  • CVE-2011-0864Jun 14, 2011
    affected < 0.53.0-r0fixed 0.53.0-r0

    Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integ

  • CVE-2011-0862Jun 14, 2011
    affected < 0.53.0-r0fixed 0.53.0-r0

    Multiple unspecified vulnerabilities in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allow remote attackers to affect confidentiality, integrity, and availability via unknown vectors re

  • CVE-2011-0815Jun 14, 2011
    affected < 0.53.0-r0fixed 0.53.0-r0

    Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integ

  • CVE-2011-0814Jun 14, 2011
    affected < 0.53.0-r0fixed 0.53.0-r0

    Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to S

  • CVE-2011-0802Jun 14, 2011
    affected < 0.53.0-r0fixed 0.53.0-r0

    Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to S

  • CVE-2010-1423Apr 15, 2010
    affected < 0.48.0-r2fixed 0.48.0-r2

    Argument injection vulnerability in the URI handler in (a) Java NPAPI plugin and (b) Java Deployment Toolkit in Java 6 Update 10, 19, and other versions, when running on Windows and possibly on Linux, allows remote attackers to execute arbitrary code via the (1) -J or (2) -XXaltj

  • CVE-2009-2675Aug 5, 2009
    affected < 0.59.0-r1fixed 0.59.0-r1

    Integer overflow in the unpack200 utility in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, allows context-dependent attackers to gain privileges via unspecified length fields in the header of a Pack200-compressed JAR f

  • CVE-2009-2673Aug 5, 2009
    affected < 0.59.0-r1fixed 0.59.0-r1

    The proxy mechanism implementation in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, allows remote attackers to bypass intended access restrictions and connect to arbitrary sites via unspecified vectors, related to a de

  • CVE-2009-2672Aug 5, 2009
    affected < 0.59.0-r1fixed 0.59.0-r1

    The proxy mechanism implementation in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, does not prevent access to browser cookies by untrusted (1) applets and (2) Java Web Start applications, which allows remote attackers

  • CVE-2009-2671Aug 5, 2009
    affected < 0.59.0-r1fixed 0.59.0-r1

    The SOCKS proxy implementation in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, allows remote attackers to discover the username of the account that invoked an untrusted (1) applet or (2) Java Web Start application via

  • CVE-2009-2670Aug 5, 2009
    affected < 0.59.0-r1fixed 0.59.0-r1

    The audio system in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, does not prevent access to java.lang.System properties by (1) untrusted applets and (2) Java Web Start applications, which allows context-dependent atta

  • CVE-2009-1103Mar 25, 2009
    affected < 0.59.0-r1fixed 0.59.0-r1

    Unspecified vulnerability in the Java Plug-in in Java SE Development Kit (JDK) and Java Runtime Environment (JRE) 5.0 Update 17 and earlier; 6 Update 12 and earlier; 1.4.2_19 and earlier; and 1.3.1_24 and earlier allows remote attackers to access files and execute arbitrary code

  • CVE-2008-5358Dec 5, 2008
    affected < 0.59.0-r1fixed 0.59.0-r1

    Java Runtime Environment (JRE) for Sun JDK and JRE 6 Update 10 and earlier might allow remote attackers to execute arbitrary code via a crafted GIF file that triggers memory corruption during display of the splash screen, possibly related to splashscreen.dll.

  • CVE-2008-5356Dec 5, 2008
    affected < 0.59.0-r1fixed 0.59.0-r1

    Heap-based buffer overflow in Java Runtime Environment (JRE) for Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; and SDK and JRE 1.4.2_18 and earlier might allow remote attackers to execute arbitrary code via a crafted TrueType font file.