VYPR

rpm package

suse/java-11-openj9&distro=SUSE Package Hub 15 SP6

pkg:rpm/suse/java-11-openj9&distro=SUSE%20Package%20Hub%2015%20SP6

Vulnerabilities (58)

  • CVE-2023-21835Jan 17, 2023
    affected < 11.0.26.0-bp156.4.3.1fixed 11.0.26.0-bp156.4.3.1

    Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JSSE). Supported versions that are affected are Oracle Java SE: 11.0.17, 17.0.5, 19.0.1; Oracle GraalVM Enterprise Edition: 20.3.8, 21.3.4 and 22.3.0. Easily exploitable

  • CVE-2022-3676Oct 24, 2022
    affected < 11.0.26.0-bp156.4.3.1fixed 11.0.26.0-bp156.4.3.1

    In Eclipse Openj9 before version 0.35.0, interface calls can be inlined without a runtime type check. Malicious bytecode could make use of this inlining to access or modify memory via an incompatible type.

  • CVE-2022-39399LowOct 18, 2022
    affected < 11.0.26.0-bp156.4.3.1fixed 11.0.26.0-bp156.4.3.1

    Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Networking). Supported versions that are affected are Oracle Java SE: 11.0.16.1, 17.0.4.1, 19; Oracle GraalVM Enterprise Edition: 20.3.7, 21.3.3 and 22.2.0. Difficult to e

  • CVE-2022-21626MedOct 18, 2022
    affected < 11.0.26.0-bp156.4.3.1fixed 11.0.26.0-bp156.4.3.1

    Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Security). Supported versions that are affected are Oracle Java SE: 8u341, 8u345-perf, 11.0.16.1; Oracle GraalVM Enterprise Edition: 20.3.7, 21.3.3 and 22.2.0. Easily expl

  • CVE-2022-21624LowOct 18, 2022
    affected < 11.0.26.0-bp156.4.3.1fixed 11.0.26.0-bp156.4.3.1

    Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JNDI). Supported versions that are affected are Oracle Java SE: 8u341, 8u345-perf, 11.0.16.1, 17.0.4.1, 19; Oracle GraalVM Enterprise Edition: 20.3.7, 21.3.3 and 22.2.0. D

  • CVE-2022-21619LowOct 18, 2022
    affected < 11.0.26.0-bp156.4.3.1fixed 11.0.26.0-bp156.4.3.1

    Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Security). Supported versions that are affected are Oracle Java SE: 8u341, 8u345-perf, 11.0.16.1, 17.0.4.1, 19; Oracle GraalVM Enterprise Edition: 20.3.7, 21.3.3 and 22.2.

  • CVE-2022-21618MedOct 18, 2022
    affected < 11.0.26.0-bp156.4.3.1fixed 11.0.26.0-bp156.4.3.1

    Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JGSS). Supported versions that are affected are Oracle Java SE: 17.0.4.1, 19; Oracle GraalVM Enterprise Edition: 21.3.3 and 22.2.0. Easily exploitable vulnerability allows

  • CVE-2022-21628Oct 18, 2022
    affected < 11.0.26.0-bp156.4.3.1fixed 11.0.26.0-bp156.4.3.1

    Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Lightweight HTTP Server). Supported versions that are affected are Oracle Java SE: 8u341, 8u345-perf, 11.0.16.1, 17.0.4.1, 19; Oracle GraalVM Enterprise Edition: 20.3.7, 2

  • CVE-2022-21540MedJul 19, 2022
    affected < 11.0.26.0-bp156.4.3.1fixed 11.0.26.0-bp156.4.3.1

    Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 7u343, 8u333, 11.0.15.1, 17.0.3.1, 18.0.1.1; Oracle GraalVM Enterprise Edition: 20.3.6, 21.3.2 and 22.1.

  • CVE-2022-34169HigJul 19, 2022
    affected < 11.0.26.0-bp156.4.3.1fixed 11.0.26.0-bp156.4.3.1

    The Apache Xalan Java XSLT library is vulnerable to an integer truncation issue when processing malicious XSLT stylesheets. This can be used to corrupt Java class files generated by the internal XSLTC compiler and execute arbitrary Java bytecode. Users are recommended to update t

  • CVE-2022-21541Jul 19, 2022
    affected < 11.0.26.0-bp156.4.3.1fixed 11.0.26.0-bp156.4.3.1

    Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 7u343, 8u333, 11.0.15.1, 17.0.3.1, 18.0.1.1; Oracle GraalVM Enterprise Edition: 20.3.6, 21.3.2 and 22.1.

  • CVE-2021-41041Apr 27, 2022
    affected < 11.0.26.0-bp156.4.3.1fixed 11.0.26.0-bp156.4.3.1

    In Eclipse Openj9 before version 0.32.0, Java 8 & 11 fail to throw the exception captured during bytecode verification when verification is triggered by a MethodHandle invocation, allowing unverified methods to be invoked using MethodHandles.

  • CVE-2022-21476HigApr 19, 2022
    affected < 11.0.26.0-bp156.4.3.1fixed 11.0.26.0-bp156.4.3.1

    Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 7u331, 8u321, 11.0.14, 17.0.2, 18; Oracle GraalVM Enterprise Edition: 20.3.5, 21.3.1 and 22.0.0.2. Eas

  • CVE-2022-21496Apr 19, 2022
    affected < 11.0.26.0-bp156.4.3.1fixed 11.0.26.0-bp156.4.3.1

    Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JNDI). Supported versions that are affected are Oracle Java SE: 7u331, 8u321, 11.0.14, 17.0.2, 18; Oracle GraalVM Enterprise Edition: 20.3.5, 21.3.1 and 22.0.0.2. Easily e

  • CVE-2022-21443Apr 19, 2022
    affected < 11.0.26.0-bp156.4.3.1fixed 11.0.26.0-bp156.4.3.1

    Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 7u331, 8u321, 11.0.14, 17.0.2, 18; Oracle GraalVM Enterprise Edition: 20.3.5, 21.3.1 and 22.0.0.2. Dif

  • CVE-2022-21434Apr 19, 2022
    affected < 11.0.26.0-bp156.4.3.1fixed 11.0.26.0-bp156.4.3.1

    Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 7u331, 8u321, 11.0.14, 17.0.2, 18; Oracle GraalVM Enterprise Edition: 20.3.5, 21.3.1 and 22.0.0.2. Eas

  • CVE-2022-21426Apr 19, 2022
    affected < 11.0.26.0-bp156.4.3.1fixed 11.0.26.0-bp156.4.3.1

    Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JAXP). Supported versions that are affected are Oracle Java SE: 7u331, 8u321, 11.0.14, 17.0.2, 18; Oracle GraalVM Enterprise Edition: 20.3.5, 21.3.1 and 22.0.0.2. Easily e

  • CVE-2020-14803Oct 21, 2020
    affected < 11.0.26.0-bp156.4.3.1fixed 11.0.26.0-bp156.4.3.1

    Vulnerability in the Java SE product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 11.0.8 and 15. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Succe

Page 3 of 3