VYPR

apk package

chainguard/openjdk-21-openj9-default-policy

pkg:apk/chainguard/openjdk-21-openj9-default-policy

Vulnerabilities (548)

  • CVE-2018-2633HigJan 18, 2018
    affected < 0.53.0-r0fixed 0.53.0-r0

    Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JNDI). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Difficult to exploit vulnerability allows unauthe

  • CVE-2018-2629MedJan 18, 2018
    affected < 0.53.0-r0fixed 0.53.0-r0

    Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JGSS). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Difficult to exploit vulnerability allows unauthe

  • CVE-2018-2627HigJan 18, 2018
    affected < 0.53.0-r0fixed 0.53.0-r0

    Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Installer). Supported versions that are affected are Java SE: 8u152 and 9.0.1. Difficult to exploit vulnerability allows low privileged attacker with logon to the infrastructure where Java SE executes to comp

  • CVE-2018-2618MedJan 18, 2018
    affected < 0.53.0-r0fixed 0.53.0-r0

    Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JCE). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Difficult to exploit vulnerability allows unauthen

  • CVE-2018-2603MedJan 18, 2018
    affected < 0.53.0-r0fixed 0.53.0-r0

    Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Easily exploitable vulnerability allows unau

  • CVE-2018-2602MedJan 18, 2018
    affected < 0.53.0-r0fixed 0.53.0-r0

    Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: I18n). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151. Difficult to exploit vulnerability allows unauthenticated attacker with logon

  • CVE-2018-2599MedJan 18, 2018
    affected < 0.53.0-r0fixed 0.53.0-r0

    Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JNDI). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Difficult to exploit vulnerability allows unauthe

  • CVE-2018-2588MedJan 18, 2018
    affected < 0.53.0-r0fixed 0.53.0-r0

    Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: LDAP). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Easily exploitable vulnerability allows low privi

  • CVE-2018-2582MedJan 18, 2018
    affected < 0.53.0-r0fixed 0.53.0-r0

    Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Hotspot). Supported versions that are affected are Java SE: 8u152 and 9.0.1; Java SE Embedded: 8u151. Easily exploitable vulnerability allows unauthenticated attacker with network access via

  • CVE-2018-2581MedJan 18, 2018
    affected < 0.53.0-r0fixed 0.53.0-r0

    Vulnerability in the Java SE component of Oracle Java SE (subcomponent: JavaFX). Supported versions that are affected are Java SE: 7u161, 8u152 and 9.0.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Jav

  • CVE-2018-2579LowJan 18, 2018
    affected < 0.53.0-r0fixed 0.53.0-r0

    Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Difficult to exploit vulnerability allows un

  • CVE-2013-4578MedDec 29, 2017
    affected < 0.48.0-r2fixed 0.48.0-r2

    jarsigner in OpenJDK and Oracle Java SE before 7u51 allows remote attackers to bypass a code-signing protection mechanism and inject unsigned bytecode into a signed JAR file by leveraging improper file validation.

  • CVE-2017-10388HigOct 19, 2017
    affected < 0.53.0-r0fixed 0.53.0-r0

    Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 6u161, 7u151, 8u144 and 9; Java SE Embedded: 8u144. Difficult to exploit vulnerability allows unauthenticated attacker with netw

  • CVE-2017-10357MedOct 19, 2017
    affected < 0.53.0-r0fixed 0.53.0-r0

    Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Serialization). Supported versions that are affected are Java SE: 6u161, 7u151, 8u144 and 9; Java SE Embedded: 8u144. Easily exploitable vulnerability allows unauthenticated attacker with ne

  • CVE-2017-10356MedOct 19, 2017
    affected < 0.53.0-r0fixed 0.53.0-r0

    Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Security). Supported versions that are affected are Java SE: 6u161, 7u151, 8u144 and 9; Java SE Embedded: 8u144; JRockit: R28.3.15. Easily exploitable vulnerability allows unauthent

  • CVE-2017-10355MedOct 19, 2017
    affected < 0.53.0-r0fixed 0.53.0-r0

    Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Networking). Supported versions that are affected are Java SE: 6u161, 7u151, 8u144 and 9; Java SE Embedded: 8u144; JRockit: R28.3.15. Easily exploitable vulnerability allows unauthe

  • CVE-2017-10350MedOct 19, 2017
    affected < 0.53.0-r0fixed 0.53.0-r0

    Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: JAX-WS). Supported versions that are affected are Java SE: 7u151, 8u144 and 9; Java SE Embedded: 8u144. Easily exploitable vulnerability allows unauthenticated attacker with network access v

  • CVE-2017-10349MedOct 19, 2017
    affected < 0.53.0-r0fixed 0.53.0-r0

    Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: JAXP). Supported versions that are affected are Java SE: 6u161, 7u151, 8u144 and 9; Java SE Embedded: 8u144. Easily exploitable vulnerability allows unauthenticated attacker with network acc

  • CVE-2017-10348MedOct 19, 2017
    affected < 0.53.0-r0fixed 0.53.0-r0

    Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 6u161, 7u151, 8u144 and 9; Java SE Embedded: 8u144. Easily exploitable vulnerability allows unauthenticated attacker with networ

  • CVE-2017-10347MedOct 19, 2017
    affected < 0.53.0-r0fixed 0.53.0-r0

    Vulnerability in the Java SE, JRockit component of Oracle Java SE (subcomponent: Serialization). Supported versions that are affected are Java SE: 6u161, 7u151, 8u144 and 9; Java SE Embedded: 8u144. Easily exploitable vulnerability allows unauthenticated attacker with network acc

Page 12 of 28