VYPR

rpm package

suse/java-1_6_0-ibm&distro=SUSE Linux Enterprise Module for Legacy 12

pkg:rpm/suse/java-1_6_0-ibm&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Legacy%2012

Vulnerabilities (104)

  • CVE-2017-3544LowApr 24, 2017
    affected < 1.6.0_sr16.45-49.1fixed 1.6.0_sr16.45-49.1

    Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Networking). Supported versions that are affected are Java SE: 6u141, 7u131 and 8u121; Java SE Embedded: 8u121; JRockit: R28.3.13. Difficult to exploit vulnerability allows unauthen

  • CVE-2017-3539LowApr 24, 2017
    affected < 1.6.0_sr16.45-49.1fixed 1.6.0_sr16.45-49.1

    Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Security). Supported versions that are affected are Java SE: 6u141, 7u131 and 8u121; Java SE Embedded: 8u121. Difficult to exploit vulnerability allows unauthenticated attacker with network

  • CVE-2017-3533LowApr 24, 2017
    affected < 1.6.0_sr16.45-49.1fixed 1.6.0_sr16.45-49.1

    Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Networking). Supported versions that are affected are Java SE: 6u141, 7u131 and 8u121; Java SE Embedded: 8u121; JRockit: R28.3.13. Difficult to exploit vulnerability allows unauthen

  • CVE-2017-3514HigApr 24, 2017
    affected < 1.6.0_sr16.45-49.1fixed 1.6.0_sr16.45-49.1

    Vulnerability in the Java SE component of Oracle Java SE (subcomponent: AWT). Supported versions that are affected are Java SE: 6u141, 7u131 and 8u121. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java

  • CVE-2017-3509MedApr 24, 2017
    affected < 1.6.0_sr16.45-49.1fixed 1.6.0_sr16.45-49.1

    Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Networking). Supported versions that are affected are Java SE: 6u141, 7u131 and 8u121; Java SE Embedded: 8u121. Difficult to exploit vulnerability allows unauthenticated attacker with networ

  • CVE-2016-5597MedOct 25, 2016
    affected < 1.6.0_sr16.35-43.2fixed 1.6.0_sr16.35-43.2

    Unspecified vulnerability in Oracle Java SE 6u121, 7u111, 8u102; and Java SE Embedded 8u101 allows remote attackers to affect confidentiality via vectors related to Networking.

  • CVE-2016-5573HigOct 25, 2016
    affected < 1.6.0_sr16.35-43.2fixed 1.6.0_sr16.35-43.2

    Unspecified vulnerability in Oracle Java SE 6u121, 7u111, 8u102; and Java SE Embedded 8u101 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Hotspot, a different vulnerability than CVE-2016-5582.

  • CVE-2016-5568CriOct 25, 2016
    affected < 1.6.0_sr16.35-43.2fixed 1.6.0_sr16.35-43.2

    Unspecified vulnerability in Oracle Java SE 6u121, 7u111, and 8u102 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT.

  • CVE-2016-5556CriOct 25, 2016
    affected < 1.6.0_sr16.35-43.2fixed 1.6.0_sr16.35-43.2

    Unspecified vulnerability in Oracle Java SE 6u121, 7u111, and 8u102 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to 2D.

  • CVE-2016-5554MedOct 25, 2016
    affected < 1.6.0_sr16.35-43.2fixed 1.6.0_sr16.35-43.2

    Unspecified vulnerability in Oracle Java SE 6u121, 7u111, 8u102; and Java SE Embedded 8u101 allows remote attackers to affect integrity via vectors related to JMX.

  • CVE-2016-5542LowOct 25, 2016
    affected < 1.6.0_sr16.35-43.2fixed 1.6.0_sr16.35-43.2

    Unspecified vulnerability in Oracle Java SE 6u121, 7u111, 8u102; and Java SE Embedded 8u101 allows remote attackers to affect integrity via vectors related to Libraries.

  • CVE-2016-2183HigSep 1, 2016
    affected < 1.6.0_sr16.41-46.1fixed 1.6.0_sr16.41-46.1

    The DES and Triple DES ciphers, as used in the TLS, SSH, and IPSec protocols and other protocols and products, have a birthday bound of approximately four billion blocks, which makes it easier for remote attackers to obtain cleartext data via a birthday attack against a long-dura

  • CVE-2016-3485LowJul 21, 2016
    affected < 1.6.0_sr16.30-40.1fixed 1.6.0_sr16.30-40.1

    Unspecified vulnerability in Oracle Java SE 6u115, 7u101, and 8u92; Java SE Embedded 8u91; and JRockit R28.3.10 allows local users to affect integrity via vectors related to Networking.

  • CVE-2015-5041CriJun 6, 2016
    affected < 1.6.0_sr16.20-30.1fixed 1.6.0_sr16.20-30.1

    The J9 JVM in IBM SDK, Java Technology Edition 6 before SR16 FP20, 6 R1 before SR8 FP20, 7 before SR9 FP30, and 7 R1 before SR3 FP30 allows remote attackers to obtain sensitive information or inject data by invoking non-public interface methods.

  • CVE-2016-0376HigJun 3, 2016
    affected < 1.6.0_sr16.25-34.1fixed 1.6.0_sr16.25-34.1

    The com.ibm.rmi.io.SunSerializableFactory class in IBM SDK, Java Technology Edition 6 before SR16 FP25 (6.0.16.25), 6 R1 before SR8 FP25 (6.1.8.25), 7 before SR9 FP40 (7.0.9.40), 7 R1 before SR3 FP40 (7.1.3.40), and 8 before SR3 (8.0.3.0) does not properly deserialize classes in

  • CVE-2016-0363HigJun 3, 2016
    affected < 1.6.0_sr16.25-34.1fixed 1.6.0_sr16.25-34.1

    The com.ibm.CORBA.iiop.ClientDelegate class in IBM SDK, Java Technology Edition 6 before SR16 FP25 (6.0.16.25), 6 R1 before SR8 FP25 (6.1.8.25), 7 before SR9 FP40 (7.0.9.40), 7 R1 before SR3 FP40 (7.1.3.40), and 8 before SR3 (8.0.3.0) uses the invoke method of the java.lang.refle

  • CVE-2016-0264MedMay 24, 2016
    affected < 1.6.0_sr16.25-34.1fixed 1.6.0_sr16.25-34.1

    Buffer overflow in the Java Virtual Machine (JVM) in IBM SDK, Java Technology Edition 6 before SR16 FP25 (6.0.16.25), 6 R1 before SR8 FP25 (6.1.8.25), 7 before SR9 FP40 (7.0.9.40), 7 R1 before SR3 FP40 (7.1.3.40), and 8 before SR3 (8.0.3.0) allows remote attackers to execute arbi

  • CVE-2016-3449HigApr 21, 2016
    affected < 1.6.0_sr16.25-34.1fixed 1.6.0_sr16.25-34.1

    Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Deployment.

  • CVE-2016-3443CriApr 21, 2016
    affected < 1.6.0_sr16.25-34.1fixed 1.6.0_sr16.25-34.1

    Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to 2D. NOTE: the previous information is from the April 2016 CPU. Oracle has not commented on third-party claims t

  • CVE-2016-3427CriKEVApr 21, 2016
    affected < 1.6.0_sr16.25-34.1fixed 1.6.0_sr16.25-34.1

    Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77; Java SE Embedded 8u77; and JRockit R28.3.9 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JMX.

Page 2 of 6