VYPR

rpm package

opensuse/java-11-openj9&distro=openSUSE Tumbleweed

pkg:rpm/opensuse/java-11-openj9&distro=openSUSE%20Tumbleweed

Vulnerabilities (51)

  • CVE-2022-21626MedOct 18, 2022
    affected < 11.0.17.0-1.1fixed 11.0.17.0-1.1

    Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Security). Supported versions that are affected are Oracle Java SE: 8u341, 8u345-perf, 11.0.16.1; Oracle GraalVM Enterprise Edition: 20.3.7, 21.3.3 and 22.2.0. Easily expl

  • CVE-2022-21618MedOct 18, 2022
    affected < 11.0.17.0-1.1fixed 11.0.17.0-1.1

    Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JGSS). Supported versions that are affected are Oracle Java SE: 17.0.4.1, 19; Oracle GraalVM Enterprise Edition: 21.3.3 and 22.2.0. Easily exploitable vulnerability allows

  • CVE-2022-21540MedJul 19, 2022
    affected < 11.0.16.0-1.1fixed 11.0.16.0-1.1

    Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 7u343, 8u333, 11.0.15.1, 17.0.3.1, 18.0.1.1; Oracle GraalVM Enterprise Edition: 20.3.6, 21.3.2 and 22.1.

  • CVE-2022-34169HigJul 19, 2022
    affected < 11.0.16.0-1.1fixed 11.0.16.0-1.1

    The Apache Xalan Java XSLT library is vulnerable to an integer truncation issue when processing malicious XSLT stylesheets. This can be used to corrupt Java class files generated by the internal XSLTC compiler and execute arbitrary Java bytecode. Users are recommended to update t

  • CVE-2021-41041MedApr 27, 2022
    affected < 11.0.15.0-1.1fixed 11.0.15.0-1.1

    In Eclipse Openj9 before version 0.32.0, Java 8 & 11 fail to throw the exception captured during bytecode verification when verification is triggered by a MethodHandle invocation, allowing unverified methods to be invoked using MethodHandles.

  • CVE-2022-21496MedApr 19, 2022
    affected < 11.0.15.0-1.1fixed 11.0.15.0-1.1

    Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JNDI). Supported versions that are affected are Oracle Java SE: 7u331, 8u321, 11.0.14, 17.0.2, 18; Oracle GraalVM Enterprise Edition: 20.3.5, 21.3.1 and 22.0.0.2. Easily e

  • CVE-2022-21443LowApr 19, 2022
    affected < 11.0.15.0-1.1fixed 11.0.15.0-1.1

    Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 7u331, 8u321, 11.0.14, 17.0.2, 18; Oracle GraalVM Enterprise Edition: 20.3.5, 21.3.1 and 22.0.0.2. Dif

  • CVE-2022-21426MedApr 19, 2022
    affected < 11.0.15.0-1.1fixed 11.0.15.0-1.1

    Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JAXP). Supported versions that are affected are Oracle Java SE: 7u331, 8u321, 11.0.14, 17.0.2, 18; Oracle GraalVM Enterprise Edition: 20.3.5, 21.3.1 and 22.0.0.2. Easily e

  • CVE-2020-14803MedOct 21, 2020
    affected < 11.0.11.0-3.2fixed 11.0.11.0-3.2

    Vulnerability in the Java SE product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 11.0.8 and 15. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Succe

  • CVE-2020-14792MedOct 21, 2020
    affected < 11.0.11.0-3.2fixed 11.0.11.0-3.2

    Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network a

  • CVE-2020-14779LowOct 21, 2020
    affected < 11.0.11.0-3.2fixed 11.0.11.0-3.2

    Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Serialization). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with net

Page 3 of 3