rpm package
opensuse/java-1_7_0-openjdk&distro=openSUSE Tumbleweed
pkg:rpm/opensuse/java-1_7_0-openjdk&distro=openSUSE%20Tumbleweed
Vulnerabilities (304)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2014-6591 | — | < 1.7.0.121-1.1 | 1.7.0.121-1.1 | Jan 21, 2015 | Unspecified vulnerability in the Java SE component in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality via unknown vectors related to 2D, a different vulnerability than CVE-2014-6585. | ||
| CVE-2014-6587 | — | < 1.7.0.121-1.1 | 1.7.0.121-1.1 | Jan 21, 2015 | Unspecified vulnerability in Oracle Java SE 6u85, 7u72, and 8u25 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Libraries. | ||
| CVE-2014-6585 | — | < 1.7.0.121-1.1 | 1.7.0.121-1.1 | Jan 21, 2015 | Unspecified vulnerability in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality via unknown vectors related to 2D, a different vulnerability than CVE-2014-6591. | ||
| CVE-2014-6558 | — | < 1.7.0.121-1.1 | 1.7.0.121-1.1 | Oct 15, 2014 | Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, 7u67, and 8u20; Java SE Embedded 7u60; and JRockit R27.8.3 and JRockit R28.3.3 allows remote attackers to affect integrity via unknown vectors related to Security. | ||
| CVE-2014-6531 | — | < 1.7.0.121-1.1 | 1.7.0.121-1.1 | Oct 15, 2014 | Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, 7u67, and 8u20, and Java SE Embedded 7u60, allows remote attackers to affect confidentiality via unknown vectors related to Libraries. | ||
| CVE-2014-6519 | — | < 1.7.0.121-1.1 | 1.7.0.121-1.1 | Oct 15, 2014 | Unspecified vulnerability in Oracle Java SE 7u67 and 8u20, and Java SE Embedded 7u60, allows remote attackers to affect integrity via unknown vectors related to Hotspot. | ||
| CVE-2014-6517 | — | < 1.7.0.121-1.1 | 1.7.0.121-1.1 | Oct 15, 2014 | Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20; Java SE Embedded 7u60; and Jrockit R27.8.3 and R28.3.3 allows remote attackers to affect confidentiality via vectors related to JAXP. | ||
| CVE-2014-6513 | — | < 1.7.0.121-1.1 | 1.7.0.121-1.1 | Oct 15, 2014 | Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20, and Java SE Embedded 7u60, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. | ||
| CVE-2014-6512 | — | < 1.7.0.121-1.1 | 1.7.0.121-1.1 | Oct 15, 2014 | Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, 7u67, and 8u20; Java SE Embedded 7u60; and JRockit R27.8.3 and R28.3.3 allows remote attackers to affect integrity via unknown vectors related to Libraries. | ||
| CVE-2014-6511 | — | < 1.7.0.121-1.1 | 1.7.0.121-1.1 | Oct 15, 2014 | Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, 7u67, and 8u20 allows remote attackers to affect confidentiality via unknown vectors related to 2D. | ||
| CVE-2014-6506 | — | < 1.7.0.121-1.1 | 1.7.0.121-1.1 | Oct 15, 2014 | Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, 7u67, and 8u20, and Java SE Embedded 7u60, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries. | ||
| CVE-2014-6504 | — | < 1.7.0.121-1.1 | 1.7.0.121-1.1 | Oct 15, 2014 | Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, and 7u67, and Java SE Embedded 7u60, allows remote attackers to affect confidentiality via unknown vectors related to Hotspot. | ||
| CVE-2014-6502 | — | < 1.7.0.121-1.1 | 1.7.0.121-1.1 | Oct 15, 2014 | Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, 7u67, and 8u20, and Java SE Embedded 7u60, allows remote attackers to affect integrity via unknown vectors related to Libraries. | ||
| CVE-2014-6457 | — | < 1.7.0.121-1.1 | 1.7.0.121-1.1 | Oct 15, 2014 | Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, 7u67, and 8u20; Java SE Embedded 7u60; and JRockit R27.8.3, and R28.3.3 allows remote attackers to affect confidentiality and integrity via vectors related to JSSE. | ||
| CVE-2014-3566 | Low | 3.4 | < 1.7.0.121-1.1 | 1.7.0.121-1.1 | Oct 15, 2014 | The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other products, uses nondeterministic CBC padding, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, aka the "POODLE" issue. | |
| CVE-2014-4268 | — | < 1.7.0.121-1.1 | 1.7.0.121-1.1 | Jul 17, 2014 | Unspecified vulnerability in Oracle Java SE 5.0u65, 6u75, 7u60, and 8u5 allows remote attackers to affect confidentiality via unknown vectors related to Swing. | ||
| CVE-2014-4266 | — | < 1.7.0.121-1.1 | 1.7.0.121-1.1 | Jul 17, 2014 | Unspecified vulnerability in Oracle Java SE 7u60 and 8u5 allows remote attackers to affect integrity via unknown vectors related to Serviceability. | ||
| CVE-2014-4264 | — | < 1.7.0.121-1.1 | 1.7.0.121-1.1 | Jul 17, 2014 | Unspecified vulnerability in Oracle Java SE 7u60 and 8u5 allows remote attackers to affect availability via unknown vectors related to Security. | ||
| CVE-2014-4263 | — | < 1.7.0.121-1.1 | 1.7.0.121-1.1 | Jul 17, 2014 | Unspecified vulnerability in Oracle Java SE 5.0u65, 6u75, 7u60, and 8u5, and JRockit R27.8.2 and R28.3.2, allows remote attackers to affect confidentiality and integrity via unknown vectors related to "Diffie-Hellman key agreement." | ||
| CVE-2014-4262 | — | < 1.7.0.121-1.1 | 1.7.0.121-1.1 | Jul 17, 2014 | Unspecified vulnerability in Oracle Java SE 5.0u65, 6u75, 7u60, and 8u5 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries. |
- CVE-2014-6591Jan 21, 2015affected < 1.7.0.121-1.1fixed 1.7.0.121-1.1
Unspecified vulnerability in the Java SE component in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality via unknown vectors related to 2D, a different vulnerability than CVE-2014-6585.
- CVE-2014-6587Jan 21, 2015affected < 1.7.0.121-1.1fixed 1.7.0.121-1.1
Unspecified vulnerability in Oracle Java SE 6u85, 7u72, and 8u25 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Libraries.
- CVE-2014-6585Jan 21, 2015affected < 1.7.0.121-1.1fixed 1.7.0.121-1.1
Unspecified vulnerability in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality via unknown vectors related to 2D, a different vulnerability than CVE-2014-6591.
- CVE-2014-6558Oct 15, 2014affected < 1.7.0.121-1.1fixed 1.7.0.121-1.1
Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, 7u67, and 8u20; Java SE Embedded 7u60; and JRockit R27.8.3 and JRockit R28.3.3 allows remote attackers to affect integrity via unknown vectors related to Security.
- CVE-2014-6531Oct 15, 2014affected < 1.7.0.121-1.1fixed 1.7.0.121-1.1
Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, 7u67, and 8u20, and Java SE Embedded 7u60, allows remote attackers to affect confidentiality via unknown vectors related to Libraries.
- CVE-2014-6519Oct 15, 2014affected < 1.7.0.121-1.1fixed 1.7.0.121-1.1
Unspecified vulnerability in Oracle Java SE 7u67 and 8u20, and Java SE Embedded 7u60, allows remote attackers to affect integrity via unknown vectors related to Hotspot.
- CVE-2014-6517Oct 15, 2014affected < 1.7.0.121-1.1fixed 1.7.0.121-1.1
Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20; Java SE Embedded 7u60; and Jrockit R27.8.3 and R28.3.3 allows remote attackers to affect confidentiality via vectors related to JAXP.
- CVE-2014-6513Oct 15, 2014affected < 1.7.0.121-1.1fixed 1.7.0.121-1.1
Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20, and Java SE Embedded 7u60, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT.
- CVE-2014-6512Oct 15, 2014affected < 1.7.0.121-1.1fixed 1.7.0.121-1.1
Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, 7u67, and 8u20; Java SE Embedded 7u60; and JRockit R27.8.3 and R28.3.3 allows remote attackers to affect integrity via unknown vectors related to Libraries.
- CVE-2014-6511Oct 15, 2014affected < 1.7.0.121-1.1fixed 1.7.0.121-1.1
Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, 7u67, and 8u20 allows remote attackers to affect confidentiality via unknown vectors related to 2D.
- CVE-2014-6506Oct 15, 2014affected < 1.7.0.121-1.1fixed 1.7.0.121-1.1
Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, 7u67, and 8u20, and Java SE Embedded 7u60, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries.
- CVE-2014-6504Oct 15, 2014affected < 1.7.0.121-1.1fixed 1.7.0.121-1.1
Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, and 7u67, and Java SE Embedded 7u60, allows remote attackers to affect confidentiality via unknown vectors related to Hotspot.
- CVE-2014-6502Oct 15, 2014affected < 1.7.0.121-1.1fixed 1.7.0.121-1.1
Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, 7u67, and 8u20, and Java SE Embedded 7u60, allows remote attackers to affect integrity via unknown vectors related to Libraries.
- CVE-2014-6457Oct 15, 2014affected < 1.7.0.121-1.1fixed 1.7.0.121-1.1
Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, 7u67, and 8u20; Java SE Embedded 7u60; and JRockit R27.8.3, and R28.3.3 allows remote attackers to affect confidentiality and integrity via vectors related to JSSE.
- affected < 1.7.0.121-1.1fixed 1.7.0.121-1.1
The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other products, uses nondeterministic CBC padding, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, aka the "POODLE" issue.
- CVE-2014-4268Jul 17, 2014affected < 1.7.0.121-1.1fixed 1.7.0.121-1.1
Unspecified vulnerability in Oracle Java SE 5.0u65, 6u75, 7u60, and 8u5 allows remote attackers to affect confidentiality via unknown vectors related to Swing.
- CVE-2014-4266Jul 17, 2014affected < 1.7.0.121-1.1fixed 1.7.0.121-1.1
Unspecified vulnerability in Oracle Java SE 7u60 and 8u5 allows remote attackers to affect integrity via unknown vectors related to Serviceability.
- CVE-2014-4264Jul 17, 2014affected < 1.7.0.121-1.1fixed 1.7.0.121-1.1
Unspecified vulnerability in Oracle Java SE 7u60 and 8u5 allows remote attackers to affect availability via unknown vectors related to Security.
- CVE-2014-4263Jul 17, 2014affected < 1.7.0.121-1.1fixed 1.7.0.121-1.1
Unspecified vulnerability in Oracle Java SE 5.0u65, 6u75, 7u60, and 8u5, and JRockit R27.8.2 and R28.3.2, allows remote attackers to affect confidentiality and integrity via unknown vectors related to "Diffie-Hellman key agreement."
- CVE-2014-4262Jul 17, 2014affected < 1.7.0.121-1.1fixed 1.7.0.121-1.1
Unspecified vulnerability in Oracle Java SE 5.0u65, 6u75, 7u60, and 8u5 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries.
Page 5 of 16