rpm package

suse/java-1_6_0-ibm&distro=SUSE Manager 2.1

pkg:rpm/suse/java-1_6_0-ibm&distro=SUSE%20Manager%202.1

Vulnerabilities (17)

CVE	Sev	CVSS	KEV	Affected versions	Fixed in	Published	Description
CVE-2016-5597	Med	5.9		< 1.6.0_sr16.35-78.2	1.6.0_sr16.35-78.2	Oct 25, 2016	Unspecified vulnerability in Oracle Java SE 6u121, 7u111, 8u102; and Java SE Embedded 8u101 allows remote attackers to affect confidentiality via vectors related to Networking.
CVE-2016-5573	Hig	8.3		< 1.6.0_sr16.35-78.2	1.6.0_sr16.35-78.2	Oct 25, 2016	Unspecified vulnerability in Oracle Java SE 6u121, 7u111, 8u102; and Java SE Embedded 8u101 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Hotspot, a different vulnerability than CVE-2016-5582.
CVE-2016-5568	Cri	9.6		< 1.6.0_sr16.35-78.2	1.6.0_sr16.35-78.2	Oct 25, 2016	Unspecified vulnerability in Oracle Java SE 6u121, 7u111, and 8u102 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT.
CVE-2016-5556	Cri	9.6		< 1.6.0_sr16.35-78.2	1.6.0_sr16.35-78.2	Oct 25, 2016	Unspecified vulnerability in Oracle Java SE 6u121, 7u111, and 8u102 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to 2D.
CVE-2016-5554	Med	4.3		< 1.6.0_sr16.35-78.2	1.6.0_sr16.35-78.2	Oct 25, 2016	Unspecified vulnerability in Oracle Java SE 6u121, 7u111, 8u102; and Java SE Embedded 8u101 allows remote attackers to affect integrity via vectors related to JMX.
CVE-2016-5542	Low	3.1		< 1.6.0_sr16.35-78.2	1.6.0_sr16.35-78.2	Oct 25, 2016	Unspecified vulnerability in Oracle Java SE 6u121, 7u111, 8u102; and Java SE Embedded 8u101 allows remote attackers to affect integrity via vectors related to Libraries.
CVE-2016-3485	Low	2.9		< 1.6.0_sr16.30-75.1	1.6.0_sr16.30-75.1	Jul 21, 2016	Unspecified vulnerability in Oracle Java SE 6u115, 7u101, and 8u92; Java SE Embedded 8u91; and JRockit R28.3.10 allows local users to affect integrity via vectors related to Networking.
CVE-2016-0376	Hig	8.1		< 1.6.0_sr16.25-69.1	1.6.0_sr16.25-69.1	Jun 3, 2016	The com.ibm.rmi.io.SunSerializableFactory class in IBM SDK, Java Technology Edition 6 before SR16 FP25 (6.0.16.25), 6 R1 before SR8 FP25 (6.1.8.25), 7 before SR9 FP40 (7.0.9.40), 7 R1 before SR3 FP40 (7.1.3.40), and 8 before SR3 (8.0.3.0) does not properly deserialize classes in
CVE-2016-0363	Hig	8.1		< 1.6.0_sr16.25-69.1	1.6.0_sr16.25-69.1	Jun 3, 2016	The com.ibm.CORBA.iiop.ClientDelegate class in IBM SDK, Java Technology Edition 6 before SR16 FP25 (6.0.16.25), 6 R1 before SR8 FP25 (6.1.8.25), 7 before SR9 FP40 (7.0.9.40), 7 R1 before SR3 FP40 (7.1.3.40), and 8 before SR3 (8.0.3.0) uses the invoke method of the java.lang.refle
CVE-2016-0264	Med	5.6		< 1.6.0_sr16.25-69.1	1.6.0_sr16.25-69.1	May 24, 2016	Buffer overflow in the Java Virtual Machine (JVM) in IBM SDK, Java Technology Edition 6 before SR16 FP25 (6.0.16.25), 6 R1 before SR8 FP25 (6.1.8.25), 7 before SR9 FP40 (7.0.9.40), 7 R1 before SR3 FP40 (7.1.3.40), and 8 before SR3 (8.0.3.0) allows remote attackers to execute arbi
CVE-2016-3449	Hig	8.3		< 1.6.0_sr16.25-69.1	1.6.0_sr16.25-69.1	Apr 21, 2016	Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Deployment.
CVE-2016-3443	Cri	9.6		< 1.6.0_sr16.25-69.1	1.6.0_sr16.25-69.1	Apr 21, 2016	Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to 2D. NOTE: the previous information is from the April 2016 CPU. Oracle has not commented on third-party claims t
CVE-2016-3427	Cri	9.8	KEV	< 1.6.0_sr16.25-69.1	1.6.0_sr16.25-69.1	Apr 21, 2016	Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77; Java SE Embedded 8u77; and JRockit R28.3.9 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JMX.
CVE-2016-3426	Low	3.1		< 1.6.0_sr16.25-69.1	1.6.0_sr16.25-69.1	Apr 21, 2016	Unspecified vulnerability in Oracle Java SE 8u77 and Java SE Embedded 8u77 allows remote attackers to affect confidentiality via vectors related to JCE.
CVE-2016-3422	Med	4.3		< 1.6.0_sr16.25-69.1	1.6.0_sr16.25-69.1	Apr 21, 2016	Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77 allows remote attackers to affect availability via vectors related to 2D.
CVE-2016-0687	Cri	9.6		< 1.6.0_sr16.25-69.1	1.6.0_sr16.25-69.1	Apr 21, 2016	Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77 and Java SE Embedded 8u77 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to the Hotspot sub-component.
CVE-2016-0686	Cri	9.6		< 1.6.0_sr16.25-69.1	1.6.0_sr16.25-69.1	Apr 21, 2016	Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77 and Java SE Embedded 8u77 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Serialization.

CVE-2016-5597MedOct 25, 2016
affected < 1.6.0_sr16.35-78.2fixed 1.6.0_sr16.35-78.2
Unspecified vulnerability in Oracle Java SE 6u121, 7u111, 8u102; and Java SE Embedded 8u101 allows remote attackers to affect confidentiality via vectors related to Networking.
CVE-2016-5573HigOct 25, 2016
affected < 1.6.0_sr16.35-78.2fixed 1.6.0_sr16.35-78.2
Unspecified vulnerability in Oracle Java SE 6u121, 7u111, 8u102; and Java SE Embedded 8u101 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Hotspot, a different vulnerability than CVE-2016-5582.
CVE-2016-5568CriOct 25, 2016
affected < 1.6.0_sr16.35-78.2fixed 1.6.0_sr16.35-78.2
Unspecified vulnerability in Oracle Java SE 6u121, 7u111, and 8u102 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT.
CVE-2016-5556CriOct 25, 2016
affected < 1.6.0_sr16.35-78.2fixed 1.6.0_sr16.35-78.2
Unspecified vulnerability in Oracle Java SE 6u121, 7u111, and 8u102 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to 2D.
CVE-2016-5554MedOct 25, 2016
affected < 1.6.0_sr16.35-78.2fixed 1.6.0_sr16.35-78.2
Unspecified vulnerability in Oracle Java SE 6u121, 7u111, 8u102; and Java SE Embedded 8u101 allows remote attackers to affect integrity via vectors related to JMX.
CVE-2016-5542LowOct 25, 2016
affected < 1.6.0_sr16.35-78.2fixed 1.6.0_sr16.35-78.2
Unspecified vulnerability in Oracle Java SE 6u121, 7u111, 8u102; and Java SE Embedded 8u101 allows remote attackers to affect integrity via vectors related to Libraries.
CVE-2016-3485LowJul 21, 2016
affected < 1.6.0_sr16.30-75.1fixed 1.6.0_sr16.30-75.1
Unspecified vulnerability in Oracle Java SE 6u115, 7u101, and 8u92; Java SE Embedded 8u91; and JRockit R28.3.10 allows local users to affect integrity via vectors related to Networking.
CVE-2016-0376HigJun 3, 2016
affected < 1.6.0_sr16.25-69.1fixed 1.6.0_sr16.25-69.1
The com.ibm.rmi.io.SunSerializableFactory class in IBM SDK, Java Technology Edition 6 before SR16 FP25 (6.0.16.25), 6 R1 before SR8 FP25 (6.1.8.25), 7 before SR9 FP40 (7.0.9.40), 7 R1 before SR3 FP40 (7.1.3.40), and 8 before SR3 (8.0.3.0) does not properly deserialize classes in
CVE-2016-0363HigJun 3, 2016
affected < 1.6.0_sr16.25-69.1fixed 1.6.0_sr16.25-69.1
The com.ibm.CORBA.iiop.ClientDelegate class in IBM SDK, Java Technology Edition 6 before SR16 FP25 (6.0.16.25), 6 R1 before SR8 FP25 (6.1.8.25), 7 before SR9 FP40 (7.0.9.40), 7 R1 before SR3 FP40 (7.1.3.40), and 8 before SR3 (8.0.3.0) uses the invoke method of the java.lang.refle
CVE-2016-0264MedMay 24, 2016
affected < 1.6.0_sr16.25-69.1fixed 1.6.0_sr16.25-69.1
Buffer overflow in the Java Virtual Machine (JVM) in IBM SDK, Java Technology Edition 6 before SR16 FP25 (6.0.16.25), 6 R1 before SR8 FP25 (6.1.8.25), 7 before SR9 FP40 (7.0.9.40), 7 R1 before SR3 FP40 (7.1.3.40), and 8 before SR3 (8.0.3.0) allows remote attackers to execute arbi
CVE-2016-3449HigApr 21, 2016
affected < 1.6.0_sr16.25-69.1fixed 1.6.0_sr16.25-69.1
Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Deployment.
CVE-2016-3443CriApr 21, 2016
affected < 1.6.0_sr16.25-69.1fixed 1.6.0_sr16.25-69.1
Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to 2D. NOTE: the previous information is from the April 2016 CPU. Oracle has not commented on third-party claims t
CVE-2016-3427CriKEVApr 21, 2016
affected < 1.6.0_sr16.25-69.1fixed 1.6.0_sr16.25-69.1
Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77; Java SE Embedded 8u77; and JRockit R28.3.9 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JMX.
CVE-2016-3426LowApr 21, 2016
affected < 1.6.0_sr16.25-69.1fixed 1.6.0_sr16.25-69.1
Unspecified vulnerability in Oracle Java SE 8u77 and Java SE Embedded 8u77 allows remote attackers to affect confidentiality via vectors related to JCE.
CVE-2016-3422MedApr 21, 2016
affected < 1.6.0_sr16.25-69.1fixed 1.6.0_sr16.25-69.1
Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77 allows remote attackers to affect availability via vectors related to 2D.
CVE-2016-0687CriApr 21, 2016
affected < 1.6.0_sr16.25-69.1fixed 1.6.0_sr16.25-69.1
Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77 and Java SE Embedded 8u77 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to the Hotspot sub-component.
CVE-2016-0686CriApr 21, 2016
affected < 1.6.0_sr16.25-69.1fixed 1.6.0_sr16.25-69.1
Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77 and Java SE Embedded 8u77 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Serialization.