rpm package
suse/java-1_7_0-ibm&distro=SUSE Linux Enterprise Point of Sale 11 SP3
pkg:rpm/suse/java-1_7_0-ibm&distro=SUSE%20Linux%20Enterprise%20Point%20of%20Sale%2011%20SP3
Vulnerabilities (154)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2021-35586 | — | < 1.7.0_sr11.0-65.63.1 | 1.7.0_sr11.0-65.63.1 | Oct 20, 2021 | Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: ImageIO). Supported versions that are affected are Java SE: 7u311, 8u301, 11.0.12, 17; Oracle GraalVM Enterprise Edition: 20.3.3 and 21.2.0. Easily exploitable vulnerability allo | ||
| CVE-2021-35565 | — | < 1.7.0_sr11.0-65.63.1 | 1.7.0_sr11.0-65.63.1 | Oct 20, 2021 | Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JSSE). Supported versions that are affected are Java SE: 7u311, 8u301, 11.0.12; Oracle GraalVM Enterprise Edition: 20.3.3 and 21.2.0. Easily exploitable vulnerability allows unau | ||
| CVE-2021-35564 | — | < 1.7.0_sr11.0-65.63.1 | 1.7.0_sr11.0-65.63.1 | Oct 20, 2021 | Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Keytool). Supported versions that are affected are Java SE: 7u311, 8u301, 11.0.12, 17; Oracle GraalVM Enterprise Edition: 20.3.3 and 21.2.0. Easily exploitable vulnerability allo | ||
| CVE-2021-35559 | — | < 1.7.0_sr11.0-65.63.1 | 1.7.0_sr11.0-65.63.1 | Oct 20, 2021 | Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Swing). Supported versions that are affected are Java SE: 7u311, 8u301, 11.0.12, 17; Oracle GraalVM Enterprise Edition: 20.3.3 and 21.2.0. Easily exploitable vulnerability allows | ||
| CVE-2021-2432 | — | < 1.7.0_sr11.0-65.63.1 | 1.7.0_sr11.0-65.63.1 | Jul 20, 2021 | Vulnerability in the Java SE product of Oracle Java SE (component: JNDI). The supported version that is affected is Java SE: 7u301. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful atta | ||
| CVE-2021-2388 | — | < 1.7.0_sr11.0-65.63.1 | 1.7.0_sr11.0-65.63.1 | Jul 20, 2021 | Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Java SE: 8u291, 11.0.11, 16.0.1; Oracle GraalVM Enterprise Edition: 20.3.2 and 21.1.0. Difficult to exploit vulnerability allow | ||
| CVE-2021-2341 | — | < 1.7.0_sr11.0-65.63.1 | 1.7.0_sr11.0-65.63.1 | Jul 20, 2021 | Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Networking). Supported versions that are affected are Java SE: 7u301, 8u291, 11.0.11, 16.0.1; Oracle GraalVM Enterprise Edition: 20.3.2 and 21.1.0. Difficult to exploit vulnerabi | ||
| CVE-2021-2369 | — | < 1.7.0_sr11.0-65.63.1 | 1.7.0_sr11.0-65.63.1 | Jul 20, 2021 | Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Library). Supported versions that are affected are Java SE: 7u301, 8u291, 11.0.11, 16.0.1; Oracle GraalVM Enterprise Edition: 20.3.2 and 21.1.0. Easily exploitable vulnerability | ||
| CVE-2021-2163 | — | < 1.7.0_sr11.0-65.63.1 | 1.7.0_sr11.0-65.63.1 | Apr 22, 2021 | Vulnerability in the Java SE, Java SE Embedded, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u291, 8u281, 11.0.10, 16; Java SE Embedded: 8u281; Oracle GraalVM Enterprise Edition: 19.3.5, 20. | ||
| CVE-2020-27221 | — | < 1.7.0_sr10.80-65.60.1 | 1.7.0_sr10.80-65.60.1 | Jan 21, 2021 | In Eclipse OpenJ9 up to and including version 0.23, there is potential for a stack-based buffer overflow when the virtual machine or JNI natives are converting from UTF-8 characters to platform encoding. | ||
| CVE-2020-14803 | — | < 1.7.0_sr10.75-65.57.1 | 1.7.0_sr10.75-65.57.1 | Oct 21, 2020 | Vulnerability in the Java SE product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 11.0.8 and 15. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Succe | ||
| CVE-2020-14798 | — | < 1.7.0_sr10.75-65.57.1 | 1.7.0_sr10.75-65.57.1 | Oct 21, 2020 | Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network | ||
| CVE-2020-14797 | — | < 1.7.0_sr10.75-65.57.1 | 1.7.0_sr10.75-65.57.1 | Oct 21, 2020 | Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network | ||
| CVE-2020-14796 | — | < 1.7.0_sr10.75-65.57.1 | 1.7.0_sr10.75-65.57.1 | Oct 21, 2020 | Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network | ||
| CVE-2020-14792 | — | < 1.7.0_sr10.75-65.57.1 | 1.7.0_sr10.75-65.57.1 | Oct 21, 2020 | Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network a | ||
| CVE-2020-14782 | — | < 1.7.0_sr10.75-65.57.1 | 1.7.0_sr10.75-65.57.1 | Oct 21, 2020 | Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network | ||
| CVE-2020-14781 | — | < 1.7.0_sr10.75-65.57.1 | 1.7.0_sr10.75-65.57.1 | Oct 21, 2020 | Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: JNDI). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network acce | ||
| CVE-2020-14779 | — | < 1.7.0_sr10.75-65.57.1 | 1.7.0_sr10.75-65.57.1 | Oct 21, 2020 | Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Serialization). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with net | ||
| CVE-2019-17639 | — | < 1.7.0_sr10.70-65.54.1 | 1.7.0_sr10.70-65.54.1 | Jul 15, 2020 | In Eclipse OpenJ9 prior to version 0.21 on Power platforms, calling the System.arraycopy method with a length longer than the length of the source or destination array can, in certain specially crafted code patterns, cause the current method to return prematurely with an undefine | ||
| CVE-2020-14621 | — | < 1.7.0_sr10.70-65.54.1 | 1.7.0_sr10.70-65.54.1 | Jul 15, 2020 | Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: JAXP). Supported versions that are affected are Java SE: 7u261, 8u251, 11.0.7 and 14.0.1; Java SE Embedded: 8u251. Easily exploitable vulnerability allows unauthenticated attacker with network ac |
- CVE-2021-35586Oct 20, 2021affected < 1.7.0_sr11.0-65.63.1fixed 1.7.0_sr11.0-65.63.1
Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: ImageIO). Supported versions that are affected are Java SE: 7u311, 8u301, 11.0.12, 17; Oracle GraalVM Enterprise Edition: 20.3.3 and 21.2.0. Easily exploitable vulnerability allo
- CVE-2021-35565Oct 20, 2021affected < 1.7.0_sr11.0-65.63.1fixed 1.7.0_sr11.0-65.63.1
Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JSSE). Supported versions that are affected are Java SE: 7u311, 8u301, 11.0.12; Oracle GraalVM Enterprise Edition: 20.3.3 and 21.2.0. Easily exploitable vulnerability allows unau
- CVE-2021-35564Oct 20, 2021affected < 1.7.0_sr11.0-65.63.1fixed 1.7.0_sr11.0-65.63.1
Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Keytool). Supported versions that are affected are Java SE: 7u311, 8u301, 11.0.12, 17; Oracle GraalVM Enterprise Edition: 20.3.3 and 21.2.0. Easily exploitable vulnerability allo
- CVE-2021-35559Oct 20, 2021affected < 1.7.0_sr11.0-65.63.1fixed 1.7.0_sr11.0-65.63.1
Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Swing). Supported versions that are affected are Java SE: 7u311, 8u301, 11.0.12, 17; Oracle GraalVM Enterprise Edition: 20.3.3 and 21.2.0. Easily exploitable vulnerability allows
- CVE-2021-2432Jul 20, 2021affected < 1.7.0_sr11.0-65.63.1fixed 1.7.0_sr11.0-65.63.1
Vulnerability in the Java SE product of Oracle Java SE (component: JNDI). The supported version that is affected is Java SE: 7u301. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful atta
- CVE-2021-2388Jul 20, 2021affected < 1.7.0_sr11.0-65.63.1fixed 1.7.0_sr11.0-65.63.1
Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Java SE: 8u291, 11.0.11, 16.0.1; Oracle GraalVM Enterprise Edition: 20.3.2 and 21.1.0. Difficult to exploit vulnerability allow
- CVE-2021-2341Jul 20, 2021affected < 1.7.0_sr11.0-65.63.1fixed 1.7.0_sr11.0-65.63.1
Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Networking). Supported versions that are affected are Java SE: 7u301, 8u291, 11.0.11, 16.0.1; Oracle GraalVM Enterprise Edition: 20.3.2 and 21.1.0. Difficult to exploit vulnerabi
- CVE-2021-2369Jul 20, 2021affected < 1.7.0_sr11.0-65.63.1fixed 1.7.0_sr11.0-65.63.1
Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Library). Supported versions that are affected are Java SE: 7u301, 8u291, 11.0.11, 16.0.1; Oracle GraalVM Enterprise Edition: 20.3.2 and 21.1.0. Easily exploitable vulnerability
- CVE-2021-2163Apr 22, 2021affected < 1.7.0_sr11.0-65.63.1fixed 1.7.0_sr11.0-65.63.1
Vulnerability in the Java SE, Java SE Embedded, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u291, 8u281, 11.0.10, 16; Java SE Embedded: 8u281; Oracle GraalVM Enterprise Edition: 19.3.5, 20.
- CVE-2020-27221Jan 21, 2021affected < 1.7.0_sr10.80-65.60.1fixed 1.7.0_sr10.80-65.60.1
In Eclipse OpenJ9 up to and including version 0.23, there is potential for a stack-based buffer overflow when the virtual machine or JNI natives are converting from UTF-8 characters to platform encoding.
- CVE-2020-14803Oct 21, 2020affected < 1.7.0_sr10.75-65.57.1fixed 1.7.0_sr10.75-65.57.1
Vulnerability in the Java SE product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 11.0.8 and 15. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Succe
- CVE-2020-14798Oct 21, 2020affected < 1.7.0_sr10.75-65.57.1fixed 1.7.0_sr10.75-65.57.1
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network
- CVE-2020-14797Oct 21, 2020affected < 1.7.0_sr10.75-65.57.1fixed 1.7.0_sr10.75-65.57.1
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network
- CVE-2020-14796Oct 21, 2020affected < 1.7.0_sr10.75-65.57.1fixed 1.7.0_sr10.75-65.57.1
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network
- CVE-2020-14792Oct 21, 2020affected < 1.7.0_sr10.75-65.57.1fixed 1.7.0_sr10.75-65.57.1
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network a
- CVE-2020-14782Oct 21, 2020affected < 1.7.0_sr10.75-65.57.1fixed 1.7.0_sr10.75-65.57.1
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network
- CVE-2020-14781Oct 21, 2020affected < 1.7.0_sr10.75-65.57.1fixed 1.7.0_sr10.75-65.57.1
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: JNDI). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network acce
- CVE-2020-14779Oct 21, 2020affected < 1.7.0_sr10.75-65.57.1fixed 1.7.0_sr10.75-65.57.1
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Serialization). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with net
- CVE-2019-17639Jul 15, 2020affected < 1.7.0_sr10.70-65.54.1fixed 1.7.0_sr10.70-65.54.1
In Eclipse OpenJ9 prior to version 0.21 on Power platforms, calling the System.arraycopy method with a length longer than the length of the source or destination array can, in certain specially crafted code patterns, cause the current method to return prematurely with an undefine
- CVE-2020-14621Jul 15, 2020affected < 1.7.0_sr10.70-65.54.1fixed 1.7.0_sr10.70-65.54.1
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: JAXP). Supported versions that are affected are Java SE: 7u261, 8u251, 11.0.7 and 14.0.1; Java SE Embedded: 8u251. Easily exploitable vulnerability allows unauthenticated attacker with network ac
Page 2 of 8