VYPR

rpm package

suse/java-1_7_0-openjdk&distro=SUSE Linux Enterprise Server 12 SP1-LTSS

pkg:rpm/suse/java-1_7_0-openjdk&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1-LTSS

Vulnerabilities (98)

  • CVE-2017-10107CriAug 8, 2017
    affected < 1.7.0.161-43.7.6fixed 1.7.0.161-43.7.6

    Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: RMI). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131. Easily exploitable vulnerability allows unauthenticated attacker with network access

  • CVE-2017-10105MedAug 8, 2017
    affected < 1.7.0.161-43.7.6fixed 1.7.0.161-43.7.6

    Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise

  • CVE-2017-10102CriAug 8, 2017
    affected < 1.7.0.161-43.7.6fixed 1.7.0.161-43.7.6

    Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: RMI). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131. Difficult to exploit vulnerability allows unauthenticated attacker with network acces

  • CVE-2017-10101CriAug 8, 2017
    affected < 1.7.0.161-43.7.6fixed 1.7.0.161-43.7.6

    Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: JAXP). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131. Easily exploitable vulnerability allows unauthenticated attacker with network access

  • CVE-2017-10096CriAug 8, 2017
    affected < 1.7.0.161-43.7.6fixed 1.7.0.161-43.7.6

    Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: JAXP). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131. Easily exploitable vulnerability allows unauthenticated attacker with network access

  • CVE-2017-10090CriAug 8, 2017
    affected < 1.7.0.161-43.7.6fixed 1.7.0.161-43.7.6

    Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 7u141 and 8u131; Java SE Embedded: 8u131. Easily exploitable vulnerability allows unauthenticated attacker with network access v

  • CVE-2017-10089CriAug 8, 2017
    affected < 1.7.0.161-43.7.6fixed 1.7.0.161-43.7.6

    Vulnerability in the Java SE component of Oracle Java SE (subcomponent: ImageIO). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Ja

  • CVE-2017-10087CriAug 8, 2017
    affected < 1.7.0.161-43.7.6fixed 1.7.0.161-43.7.6

    Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131. Easily exploitable vulnerability allows unauthenticated attacker with network a

  • CVE-2017-10086CriAug 8, 2017
    affected < 1.7.0.161-43.7.6fixed 1.7.0.161-43.7.6

    Vulnerability in the Java SE component of Oracle Java SE (subcomponent: JavaFX). Supported versions that are affected are Java SE: 7u141 and 8u131. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. S

  • CVE-2017-10081MedAug 8, 2017
    affected < 1.7.0.161-43.7.6fixed 1.7.0.161-43.7.6

    Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Hotspot). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131. Easily exploitable vulnerability allows unauthenticated attacker with network acc

  • CVE-2017-10074HigAug 8, 2017
    affected < 1.7.0.161-43.7.6fixed 1.7.0.161-43.7.6

    Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Hotspot). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131. Difficult to exploit vulnerability allows unauthenticated attacker with network a

  • CVE-2017-10067HigAug 8, 2017
    affected < 1.7.0.161-43.7.6fixed 1.7.0.161-43.7.6

    Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Security). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise

  • CVE-2017-10053MedAug 8, 2017
    affected < 1.7.0.161-43.7.6fixed 1.7.0.161-43.7.6

    Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: 2D). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131; JRockit: R28.3.14. Easily exploitable vulnerability allows unauthenticated at

  • CVE-2016-9843CriMay 23, 2017
    affected < 1.7.0.161-43.7.6fixed 1.7.0.161-43.7.6

    The crc32_big function in crc32.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact via vectors involving big-endian CRC calculation.

  • CVE-2016-9842HigMay 23, 2017
    affected < 1.7.0.161-43.7.6fixed 1.7.0.161-43.7.6

    The inflateMark function in inflate.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact via vectors involving left shifts of negative integers.

  • CVE-2016-9841CriMay 23, 2017
    affected < 1.7.0.161-43.7.6fixed 1.7.0.161-43.7.6

    inffast.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by leveraging improper pointer arithmetic.

  • CVE-2016-9840HigMay 23, 2017
    affected < 1.7.0.161-43.7.6fixed 1.7.0.161-43.7.6

    inftrees.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by leveraging improper pointer arithmetic.

  • CVE-2016-10165HigFeb 3, 2017
    affected < 1.7.0.161-43.7.6fixed 1.7.0.161-43.7.6

    The Type_MLU_Read function in cmstypes.c in Little CMS (aka lcms2) allows remote attackers to obtain sensitive information or cause a denial of service via an image with a crafted ICC profile, which triggers an out-of-bounds heap read.

Page 5 of 5