rpm package
suse/java-1_7_0-openjdk&distro=SUSE Linux Enterprise Desktop 12
pkg:rpm/suse/java-1_7_0-openjdk&distro=SUSE%20Linux%20Enterprise%20Desktop%2012
Vulnerabilities (80)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2015-2664 | — | < 1.7.0.85-18.2 | 1.7.0.85-18.2 | Jul 16, 2015 | Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Deployment. | ||
| CVE-2015-2638 | — | < 1.7.0.85-18.2 | 1.7.0.85-18.2 | Jul 16, 2015 | Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45; JavaFX 2.2.80; and Java SE Embedded 7u75 and 8u33 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. | ||
| CVE-2015-2637 | — | < 1.7.0.85-18.2 | 1.7.0.85-18.2 | Jul 16, 2015 | Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45; JavaFX 2.2.80; and Java SE Embedded 7u75 and 8u33 allows remote attackers to affect confidentiality via unknown vectors related to 2D. | ||
| CVE-2015-2632 | — | < 1.7.0.85-18.2 | 1.7.0.85-18.2 | Jul 16, 2015 | Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45 allows remote attackers to affect confidentiality via unknown vectors related to 2D. | ||
| CVE-2015-2628 | — | < 1.7.0.85-18.2 | 1.7.0.85-18.2 | Jul 16, 2015 | Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45, and Java SE Embedded 7u75 and 8u33 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA. | ||
| CVE-2015-2627 | — | < 1.7.0.85-18.2 | 1.7.0.85-18.2 | Jul 16, 2015 | Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45 allows remote attackers to affect confidentiality via unknown vectors related to installation. | ||
| CVE-2015-2625 | — | < 1.7.0.85-18.2 | 1.7.0.85-18.2 | Jul 16, 2015 | Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45; JRockit R28.3.6; and Java SE Embedded 7u75 and 8u33 allows remote attackers to affect confidentiality via vectors related to JSSE. | ||
| CVE-2015-2621 | — | < 1.7.0.85-18.2 | 1.7.0.85-18.2 | Jul 16, 2015 | Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45, and Java SE Embedded 7u75 and 8u33, allows remote attackers to affect confidentiality via vectors related to JMX. | ||
| CVE-2015-2619 | — | < 1.7.0.85-18.2 | 1.7.0.85-18.2 | Jul 16, 2015 | Unspecified vulnerability in Oracle Java SE 7u80 and 8u45, JavaFX 2.2.80, and Java SE Embedded 7u75 and 8u33 allows remote attackers to affect confidentiality via unknown vectors related to 2D. | ||
| CVE-2015-2613 | — | < 1.7.0.85-18.2 | 1.7.0.85-18.2 | Jul 16, 2015 | Unspecified vulnerability in Oracle Java SE 7u80 and 8u45, and Java SE Embedded 7u75 and 8u33 allows remote attackers to affect confidentiality via vectors related to JCE. | ||
| CVE-2015-2601 | — | < 1.7.0.85-18.2 | 1.7.0.85-18.2 | Jul 16, 2015 | Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45, JRockit R28.3.6, and Java SE Embedded 7u75 and 8u33 allows remote attackers to affect confidentiality via vectors related to JCE. | ||
| CVE-2015-2597 | — | < 1.7.0.85-18.2 | 1.7.0.85-18.2 | Jul 16, 2015 | Unspecified vulnerability in Oracle Java SE 7u80 and 8u45 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Install. | ||
| CVE-2015-2596 | — | < 1.7.0.85-18.2 | 1.7.0.85-18.2 | Jul 16, 2015 | Unspecified vulnerability in Oracle Java SE 7u80 allows remote attackers to affect integrity via unknown vectors related to Hotspot. | ||
| CVE-2015-2590 | Cri | 9.8 | KEV | < 1.7.0.85-18.2 | 1.7.0.85-18.2 | Jul 16, 2015 | Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45, and Java SE Embedded 7u75 and 8u33 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2015-4732. |
| CVE-2015-4000 | Low | 3.7 | < 1.7.0.85-18.2 | 1.7.0.85-18.2 | May 21, 2015 | The TLS protocol 1.2 and earlier, when a DHE_EXPORT ciphersuite is enabled on a server but not on a client, does not properly convey a DHE_EXPORT choice, which allows man-in-the-middle attackers to conduct cipher-downgrade attacks by rewriting a ClientHello with DHE replaced by D | |
| CVE-2015-0492 | — | < 1.7.0.79-15.1 | 1.7.0.79-15.1 | Apr 16, 2015 | Unspecified vulnerability in Oracle Java SE 7u76 and 8u40, and JavaFX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2015-0484. | ||
| CVE-2015-0491 | — | < 1.7.0.79-15.1 | 1.7.0.79-15.1 | Apr 16, 2015 | Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40, and Java FX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2015-0459. | ||
| CVE-2015-0488 | — | < 1.7.0.79-15.1 | 1.7.0.79-15.1 | Apr 16, 2015 | Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40, and JRockit R28.3.5, allows remote attackers to affect availability via vectors related to JSSE. | ||
| CVE-2015-0484 | — | < 1.7.0.79-15.1 | 1.7.0.79-15.1 | Apr 16, 2015 | Unspecified vulnerability in Oracle Java SE 7u76 and 8u40, and Java FX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2015-0492. | ||
| CVE-2015-0480 | — | < 1.7.0.79-15.1 | 1.7.0.79-15.1 | Apr 16, 2015 | Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40 allows remote attackers to affect integrity and availability via unknown vectors related to Tools. |
- CVE-2015-2664Jul 16, 2015affected < 1.7.0.85-18.2fixed 1.7.0.85-18.2
Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.
- CVE-2015-2638Jul 16, 2015affected < 1.7.0.85-18.2fixed 1.7.0.85-18.2
Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45; JavaFX 2.2.80; and Java SE Embedded 7u75 and 8u33 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.
- CVE-2015-2637Jul 16, 2015affected < 1.7.0.85-18.2fixed 1.7.0.85-18.2
Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45; JavaFX 2.2.80; and Java SE Embedded 7u75 and 8u33 allows remote attackers to affect confidentiality via unknown vectors related to 2D.
- CVE-2015-2632Jul 16, 2015affected < 1.7.0.85-18.2fixed 1.7.0.85-18.2
Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45 allows remote attackers to affect confidentiality via unknown vectors related to 2D.
- CVE-2015-2628Jul 16, 2015affected < 1.7.0.85-18.2fixed 1.7.0.85-18.2
Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45, and Java SE Embedded 7u75 and 8u33 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA.
- CVE-2015-2627Jul 16, 2015affected < 1.7.0.85-18.2fixed 1.7.0.85-18.2
Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45 allows remote attackers to affect confidentiality via unknown vectors related to installation.
- CVE-2015-2625Jul 16, 2015affected < 1.7.0.85-18.2fixed 1.7.0.85-18.2
Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45; JRockit R28.3.6; and Java SE Embedded 7u75 and 8u33 allows remote attackers to affect confidentiality via vectors related to JSSE.
- CVE-2015-2621Jul 16, 2015affected < 1.7.0.85-18.2fixed 1.7.0.85-18.2
Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45, and Java SE Embedded 7u75 and 8u33, allows remote attackers to affect confidentiality via vectors related to JMX.
- CVE-2015-2619Jul 16, 2015affected < 1.7.0.85-18.2fixed 1.7.0.85-18.2
Unspecified vulnerability in Oracle Java SE 7u80 and 8u45, JavaFX 2.2.80, and Java SE Embedded 7u75 and 8u33 allows remote attackers to affect confidentiality via unknown vectors related to 2D.
- CVE-2015-2613Jul 16, 2015affected < 1.7.0.85-18.2fixed 1.7.0.85-18.2
Unspecified vulnerability in Oracle Java SE 7u80 and 8u45, and Java SE Embedded 7u75 and 8u33 allows remote attackers to affect confidentiality via vectors related to JCE.
- CVE-2015-2601Jul 16, 2015affected < 1.7.0.85-18.2fixed 1.7.0.85-18.2
Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45, JRockit R28.3.6, and Java SE Embedded 7u75 and 8u33 allows remote attackers to affect confidentiality via vectors related to JCE.
- CVE-2015-2597Jul 16, 2015affected < 1.7.0.85-18.2fixed 1.7.0.85-18.2
Unspecified vulnerability in Oracle Java SE 7u80 and 8u45 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Install.
- CVE-2015-2596Jul 16, 2015affected < 1.7.0.85-18.2fixed 1.7.0.85-18.2
Unspecified vulnerability in Oracle Java SE 7u80 allows remote attackers to affect integrity via unknown vectors related to Hotspot.
- affected < 1.7.0.85-18.2fixed 1.7.0.85-18.2
Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45, and Java SE Embedded 7u75 and 8u33 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2015-4732.
- affected < 1.7.0.85-18.2fixed 1.7.0.85-18.2
The TLS protocol 1.2 and earlier, when a DHE_EXPORT ciphersuite is enabled on a server but not on a client, does not properly convey a DHE_EXPORT choice, which allows man-in-the-middle attackers to conduct cipher-downgrade attacks by rewriting a ClientHello with DHE replaced by D
- CVE-2015-0492Apr 16, 2015affected < 1.7.0.79-15.1fixed 1.7.0.79-15.1
Unspecified vulnerability in Oracle Java SE 7u76 and 8u40, and JavaFX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2015-0484.
- CVE-2015-0491Apr 16, 2015affected < 1.7.0.79-15.1fixed 1.7.0.79-15.1
Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40, and Java FX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2015-0459.
- CVE-2015-0488Apr 16, 2015affected < 1.7.0.79-15.1fixed 1.7.0.79-15.1
Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40, and JRockit R28.3.5, allows remote attackers to affect availability via vectors related to JSSE.
- CVE-2015-0484Apr 16, 2015affected < 1.7.0.79-15.1fixed 1.7.0.79-15.1
Unspecified vulnerability in Oracle Java SE 7u76 and 8u40, and Java FX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2015-0492.
- CVE-2015-0480Apr 16, 2015affected < 1.7.0.79-15.1fixed 1.7.0.79-15.1
Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40 allows remote attackers to affect integrity and availability via unknown vectors related to Tools.
Page 3 of 4