apk package
chainguard/openjdk-25-openj9-default-jvm
pkg:apk/chainguard/openjdk-25-openj9-default-jvm
Vulnerabilities (326)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2008-3106 | — | < 0.59.0-r1 | 0.59.0-r1 | Jul 9, 2008 | Unspecified vulnerability in Sun Java Runtime Environment (JRE) in JDK and JRE 6 Update 6 and earlier and JDK and JRE 5.0 Update 15 and earlier allows remote attackers to access URLs via unknown vectors involving processing of XML data by an untrusted (1) application or (2) apple | ||
| CVE-2008-3105 | — | < 0.59.0-r1 | 0.59.0-r1 | Jul 9, 2008 | Unspecified vulnerability in the JAX-WS client and service in Sun Java Runtime Environment (JRE) in JDK and JRE 6 Update 6 and earlier allows remote attackers to access URLs or cause a denial of service via unknown vectors involving "processing of XML data" by a trusted applicati | ||
| CVE-2008-3103 | — | < 0.59.0-r1 | 0.59.0-r1 | Jul 9, 2008 | Unspecified vulnerability in the Java Management Extensions (JMX) management agent in Sun Java Runtime Environment (JRE) in JDK and JRE 6 Update 6 and earlier and JDK and JRE 5.0 Update 15 and earlier, when local monitoring is enabled, allows remote attackers to "perform unauthor | ||
| CVE-2008-1191 | — | < 0.59.0-r1 | 0.59.0-r1 | Mar 6, 2008 | Unspecified vulnerability in Java Web Start in Sun JDK and JRE 6 Update 4 and earlier allows remote attackers to create arbitrary files via an untrusted application, a different issue than CVE-2008-1190, aka "The fifth issue." | ||
| CVE-2008-1187 | — | < 0.59.0-r1 | 0.59.0-r1 | Mar 6, 2008 | Unspecified vulnerability in Sun Java Runtime Environment (JRE) and JDK 6 Update 4 and earlier, 5.0 Update 14 and earlier, and SDK/JRE 1.4.2_16 and earlier allows remote attackers to cause a denial of service (JRE crash) and possibly execute arbitrary code via unknown vectors rel | ||
| CVE-2007-3716 | — | < 0.59.0-r1 | 0.59.0-r1 | Jul 11, 2007 | The Java XML Digital Signature implementation in Sun JDK and JRE 6 before Update 2 does not properly process XSLT stylesheets in XSLT transforms in XML signatures, which allows context-dependent attackers to execute arbitrary code via a crafted stylesheet, a related issue to CVE- |
- CVE-2008-3106Jul 9, 2008affected < 0.59.0-r1fixed 0.59.0-r1
Unspecified vulnerability in Sun Java Runtime Environment (JRE) in JDK and JRE 6 Update 6 and earlier and JDK and JRE 5.0 Update 15 and earlier allows remote attackers to access URLs via unknown vectors involving processing of XML data by an untrusted (1) application or (2) apple
- CVE-2008-3105Jul 9, 2008affected < 0.59.0-r1fixed 0.59.0-r1
Unspecified vulnerability in the JAX-WS client and service in Sun Java Runtime Environment (JRE) in JDK and JRE 6 Update 6 and earlier allows remote attackers to access URLs or cause a denial of service via unknown vectors involving "processing of XML data" by a trusted applicati
- CVE-2008-3103Jul 9, 2008affected < 0.59.0-r1fixed 0.59.0-r1
Unspecified vulnerability in the Java Management Extensions (JMX) management agent in Sun Java Runtime Environment (JRE) in JDK and JRE 6 Update 6 and earlier and JDK and JRE 5.0 Update 15 and earlier, when local monitoring is enabled, allows remote attackers to "perform unauthor
- CVE-2008-1191Mar 6, 2008affected < 0.59.0-r1fixed 0.59.0-r1
Unspecified vulnerability in Java Web Start in Sun JDK and JRE 6 Update 4 and earlier allows remote attackers to create arbitrary files via an untrusted application, a different issue than CVE-2008-1190, aka "The fifth issue."
- CVE-2008-1187Mar 6, 2008affected < 0.59.0-r1fixed 0.59.0-r1
Unspecified vulnerability in Sun Java Runtime Environment (JRE) and JDK 6 Update 4 and earlier, 5.0 Update 14 and earlier, and SDK/JRE 1.4.2_16 and earlier allows remote attackers to cause a denial of service (JRE crash) and possibly execute arbitrary code via unknown vectors rel
- CVE-2007-3716Jul 11, 2007affected < 0.59.0-r1fixed 0.59.0-r1
The Java XML Digital Signature implementation in Sun JDK and JRE 6 before Update 2 does not properly process XSLT stylesheets in XSLT transforms in XML signatures, which allows context-dependent attackers to execute arbitrary code via a crafted stylesheet, a related issue to CVE-
Page 17 of 17