rpm package
opensuse/java-1_7_0-openjdk&distro=openSUSE Tumbleweed
pkg:rpm/opensuse/java-1_7_0-openjdk&distro=openSUSE%20Tumbleweed
Vulnerabilities (304)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2013-2420 | — | < 1.7.0.121-1.1 | 1.7.0.121-1.1 | Apr 17, 2013 | Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unk | ||
| CVE-2013-2419 | — | < 1.7.0.121-1.1 | 1.7.0.121-1.1 | Apr 17, 2013 | Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect availability via unknown vectors related to 2D. NOT | ||
| CVE-2013-2417 | — | < 1.7.0.121-1.1 | 1.7.0.121-1.1 | Apr 17, 2013 | Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect availability via unknown vectors related to Networki | ||
| CVE-2013-2415 | — | < 1.7.0.121-1.1 | 1.7.0.121-1.1 | Apr 17, 2013 | Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, and OpenJDK 6 and 7, allows local users to affect confidentiality via vectors related to JAX-WS. NOTE: the previous information is from the April 2013 CPU. Oracle | ||
| CVE-2013-2384 | — | < 1.7.0.121-1.1 | 1.7.0.121-1.1 | Apr 17, 2013 | Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unk | ||
| CVE-2013-2383 | — | < 1.7.0.121-1.1 | 1.7.0.121-1.1 | Apr 17, 2013 | Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unk | ||
| CVE-2013-1569 | — | < 1.7.0.121-1.1 | 1.7.0.121-1.1 | Apr 17, 2013 | Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unk | ||
| CVE-2013-1557 | — | < 1.7.0.121-1.1 | 1.7.0.121-1.1 | Apr 17, 2013 | Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via vec | ||
| CVE-2013-1537 | — | < 1.7.0.121-1.1 | 1.7.0.121-1.1 | Apr 17, 2013 | Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via vec | ||
| CVE-2013-1518 | — | < 1.7.0.121-1.1 | 1.7.0.121-1.1 | Apr 17, 2013 | Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via vec | ||
| CVE-2013-1488 | — | < 1.7.0.121-1.1 | 1.7.0.121-1.1 | Mar 8, 2013 | The Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, and OpenJDK 6 and 7, allows remote attackers to execute arbitrary code via unspecified vectors involving reflection, Libraries, "improper toString calls," and the JDBC driver manager, as demon | ||
| CVE-2013-0401 | — | < 1.7.0.121-1.1 | 1.7.0.121-1.1 | Mar 8, 2013 | The Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to execute arbitrary code via vectors related to AWT, as demonstrated by Ben Murphy during | ||
| CVE-2013-1493 | — | < 1.7.0.121-1.1 | 1.7.0.121-1.1 | Mar 5, 2013 | The color management (CMM) functionality in the 2D component in Oracle Java SE 7 Update 15 and earlier, 6 Update 41 and earlier, and 5.0 Update 40 and earlier allows remote attackers to execute arbitrary code or cause a denial of service (crash) via an image with crafted raster p | ||
| CVE-2013-0809 | — | < 1.7.0.121-1.1 | 1.7.0.121-1.1 | Mar 5, 2013 | Unspecified vulnerability in the 2D component in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 15 and earlier, 6 Update 41 and earlier, and 5.0 Update 40 and earlier allows remote attackers to execute arbitrary code via unknown vectors, a different vulne | ||
| CVE-2013-1486 | — | < 1.7.0.121-1.1 | 1.7.0.121-1.1 | Feb 20, 2013 | Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 13 and earlier, 6 Update 39 and earlier, and 5.0 Update 39 and earlier allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JMX. | ||
| CVE-2013-1485 | — | < 1.7.0.121-1.1 | 1.7.0.121-1.1 | Feb 20, 2013 | Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 13 and earlier allows remote attackers to affect integrity via unknown vectors related to Libraries. | ||
| CVE-2013-1484 | — | < 1.7.0.121-1.1 | 1.7.0.121-1.1 | Feb 20, 2013 | Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 13 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries. | ||
| CVE-2013-0169 | — | < 1.7.0.121-1.1 | 1.7.0.121-1.1 | Feb 8, 2013 | The TLS protocol 1.1 and 1.2 and the DTLS protocol 1.0 and 1.2, as used in OpenSSL, OpenJDK, PolarSSL, and other products, do not properly consider timing side-channel attacks on a MAC check requirement during the processing of malformed CBC padding, which allows remote attackers | ||
| CVE-2013-1480 | — | < 1.7.0.121-1.1 | 1.7.0.121-1.1 | Feb 2, 2013 | Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availabili | ||
| CVE-2013-1478 | — | < 1.7.0.121-1.1 | 1.7.0.121-1.1 | Feb 2, 2013 | Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availabili |
- CVE-2013-2420Apr 17, 2013affected < 1.7.0.121-1.1fixed 1.7.0.121-1.1
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unk
- CVE-2013-2419Apr 17, 2013affected < 1.7.0.121-1.1fixed 1.7.0.121-1.1
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect availability via unknown vectors related to 2D. NOT
- CVE-2013-2417Apr 17, 2013affected < 1.7.0.121-1.1fixed 1.7.0.121-1.1
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect availability via unknown vectors related to Networki
- CVE-2013-2415Apr 17, 2013affected < 1.7.0.121-1.1fixed 1.7.0.121-1.1
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, and OpenJDK 6 and 7, allows local users to affect confidentiality via vectors related to JAX-WS. NOTE: the previous information is from the April 2013 CPU. Oracle
- CVE-2013-2384Apr 17, 2013affected < 1.7.0.121-1.1fixed 1.7.0.121-1.1
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unk
- CVE-2013-2383Apr 17, 2013affected < 1.7.0.121-1.1fixed 1.7.0.121-1.1
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unk
- CVE-2013-1569Apr 17, 2013affected < 1.7.0.121-1.1fixed 1.7.0.121-1.1
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unk
- CVE-2013-1557Apr 17, 2013affected < 1.7.0.121-1.1fixed 1.7.0.121-1.1
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via vec
- CVE-2013-1537Apr 17, 2013affected < 1.7.0.121-1.1fixed 1.7.0.121-1.1
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via vec
- CVE-2013-1518Apr 17, 2013affected < 1.7.0.121-1.1fixed 1.7.0.121-1.1
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via vec
- CVE-2013-1488Mar 8, 2013affected < 1.7.0.121-1.1fixed 1.7.0.121-1.1
The Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, and OpenJDK 6 and 7, allows remote attackers to execute arbitrary code via unspecified vectors involving reflection, Libraries, "improper toString calls," and the JDBC driver manager, as demon
- CVE-2013-0401Mar 8, 2013affected < 1.7.0.121-1.1fixed 1.7.0.121-1.1
The Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to execute arbitrary code via vectors related to AWT, as demonstrated by Ben Murphy during
- CVE-2013-1493Mar 5, 2013affected < 1.7.0.121-1.1fixed 1.7.0.121-1.1
The color management (CMM) functionality in the 2D component in Oracle Java SE 7 Update 15 and earlier, 6 Update 41 and earlier, and 5.0 Update 40 and earlier allows remote attackers to execute arbitrary code or cause a denial of service (crash) via an image with crafted raster p
- CVE-2013-0809Mar 5, 2013affected < 1.7.0.121-1.1fixed 1.7.0.121-1.1
Unspecified vulnerability in the 2D component in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 15 and earlier, 6 Update 41 and earlier, and 5.0 Update 40 and earlier allows remote attackers to execute arbitrary code via unknown vectors, a different vulne
- CVE-2013-1486Feb 20, 2013affected < 1.7.0.121-1.1fixed 1.7.0.121-1.1
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 13 and earlier, 6 Update 39 and earlier, and 5.0 Update 39 and earlier allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JMX.
- CVE-2013-1485Feb 20, 2013affected < 1.7.0.121-1.1fixed 1.7.0.121-1.1
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 13 and earlier allows remote attackers to affect integrity via unknown vectors related to Libraries.
- CVE-2013-1484Feb 20, 2013affected < 1.7.0.121-1.1fixed 1.7.0.121-1.1
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 13 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries.
- CVE-2013-0169Feb 8, 2013affected < 1.7.0.121-1.1fixed 1.7.0.121-1.1
The TLS protocol 1.1 and 1.2 and the DTLS protocol 1.0 and 1.2, as used in OpenSSL, OpenJDK, PolarSSL, and other products, do not properly consider timing side-channel attacks on a MAC check requirement during the processing of malformed CBC padding, which allows remote attackers
- CVE-2013-1480Feb 2, 2013affected < 1.7.0.121-1.1fixed 1.7.0.121-1.1
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availabili
- CVE-2013-1478Feb 2, 2013affected < 1.7.0.121-1.1fixed 1.7.0.121-1.1
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availabili
Page 12 of 16