rpm package
suse/java-1_7_1-ibm&distro=SUSE Linux Enterprise Server 12 SP4-LTSS
pkg:rpm/suse/java-1_7_1-ibm&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP4-LTSS
Vulnerabilities (56)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2020-27221 | — | < 1.7.1_sr4.80-38.62.1 | 1.7.1_sr4.80-38.62.1 | Jan 21, 2021 | In Eclipse OpenJ9 up to and including version 0.23, there is potential for a stack-based buffer overflow when the virtual machine or JNI natives are converting from UTF-8 characters to platform encoding. | ||
| CVE-2020-14803 | — | < 1.7.1_sr4.75-38.59.1 | 1.7.1_sr4.75-38.59.1 | Oct 21, 2020 | Vulnerability in the Java SE product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 11.0.8 and 15. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Succe | ||
| CVE-2020-14798 | — | < 1.7.1_sr4.75-38.59.1 | 1.7.1_sr4.75-38.59.1 | Oct 21, 2020 | Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network | ||
| CVE-2020-14797 | — | < 1.7.1_sr4.75-38.59.1 | 1.7.1_sr4.75-38.59.1 | Oct 21, 2020 | Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network | ||
| CVE-2020-14796 | — | < 1.7.1_sr4.75-38.59.1 | 1.7.1_sr4.75-38.59.1 | Oct 21, 2020 | Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network | ||
| CVE-2020-14792 | — | < 1.7.1_sr4.75-38.59.1 | 1.7.1_sr4.75-38.59.1 | Oct 21, 2020 | Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network a | ||
| CVE-2020-14782 | — | < 1.7.1_sr4.75-38.59.1 | 1.7.1_sr4.75-38.59.1 | Oct 21, 2020 | Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network | ||
| CVE-2020-14781 | — | < 1.7.1_sr4.75-38.59.1 | 1.7.1_sr4.75-38.59.1 | Oct 21, 2020 | Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: JNDI). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network acce | ||
| CVE-2020-14779 | — | < 1.7.1_sr4.75-38.59.1 | 1.7.1_sr4.75-38.59.1 | Oct 21, 2020 | Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Serialization). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with net | ||
| CVE-2019-17639 | — | < 1.7.1_sr4.70-38.56.1 | 1.7.1_sr4.70-38.56.1 | Jul 15, 2020 | In Eclipse OpenJ9 prior to version 0.21 on Power platforms, calling the System.arraycopy method with a length longer than the length of the source or destination array can, in certain specially crafted code patterns, cause the current method to return prematurely with an undefine | ||
| CVE-2020-14621 | — | < 1.7.1_sr4.70-38.56.1 | 1.7.1_sr4.70-38.56.1 | Jul 15, 2020 | Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: JAXP). Supported versions that are affected are Java SE: 7u261, 8u251, 11.0.7 and 14.0.1; Java SE Embedded: 8u251. Easily exploitable vulnerability allows unauthenticated attacker with network ac | ||
| CVE-2020-14593 | — | < 1.7.1_sr4.70-38.56.1 | 1.7.1_sr4.70-38.56.1 | Jul 15, 2020 | Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: 2D). Supported versions that are affected are Java SE: 7u261, 8u251, 11.0.7 and 14.0.1; Java SE Embedded: 8u251. Easily exploitable vulnerability allows unauthenticated attacker with network acce | ||
| CVE-2020-14583 | — | < 1.7.1_sr4.70-38.56.1 | 1.7.1_sr4.70-38.56.1 | Jul 15, 2020 | Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u261, 8u251, 11.0.7 and 14.0.1; Java SE Embedded: 8u251. Difficult to exploit vulnerability allows unauthenticated attacker with net | ||
| CVE-2020-14579 | — | < 1.7.1_sr4.70-38.56.1 | 1.7.1_sr4.70-38.56.1 | Jul 15, 2020 | Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u261 and 8u251; Java SE Embedded: 8u251. Difficult to exploit vulnerability allows unauthenticated attacker with network access via | ||
| CVE-2020-14578 | — | < 1.7.1_sr4.70-38.56.1 | 1.7.1_sr4.70-38.56.1 | Jul 15, 2020 | Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u261 and 8u251; Java SE Embedded: 8u251. Difficult to exploit vulnerability allows unauthenticated attacker with network access via | ||
| CVE-2020-14577 | — | < 1.7.1_sr4.70-38.56.1 | 1.7.1_sr4.70-38.56.1 | Jul 15, 2020 | Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: JSSE). Supported versions that are affected are Java SE: 7u261, 8u251, 11.0.7 and 14.0.1; Java SE Embedded: 8u251. Difficult to exploit vulnerability allows unauthenticated attacker with network |
- CVE-2020-27221Jan 21, 2021affected < 1.7.1_sr4.80-38.62.1fixed 1.7.1_sr4.80-38.62.1
In Eclipse OpenJ9 up to and including version 0.23, there is potential for a stack-based buffer overflow when the virtual machine or JNI natives are converting from UTF-8 characters to platform encoding.
- CVE-2020-14803Oct 21, 2020affected < 1.7.1_sr4.75-38.59.1fixed 1.7.1_sr4.75-38.59.1
Vulnerability in the Java SE product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 11.0.8 and 15. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Succe
- CVE-2020-14798Oct 21, 2020affected < 1.7.1_sr4.75-38.59.1fixed 1.7.1_sr4.75-38.59.1
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network
- CVE-2020-14797Oct 21, 2020affected < 1.7.1_sr4.75-38.59.1fixed 1.7.1_sr4.75-38.59.1
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network
- CVE-2020-14796Oct 21, 2020affected < 1.7.1_sr4.75-38.59.1fixed 1.7.1_sr4.75-38.59.1
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network
- CVE-2020-14792Oct 21, 2020affected < 1.7.1_sr4.75-38.59.1fixed 1.7.1_sr4.75-38.59.1
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network a
- CVE-2020-14782Oct 21, 2020affected < 1.7.1_sr4.75-38.59.1fixed 1.7.1_sr4.75-38.59.1
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network
- CVE-2020-14781Oct 21, 2020affected < 1.7.1_sr4.75-38.59.1fixed 1.7.1_sr4.75-38.59.1
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: JNDI). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network acce
- CVE-2020-14779Oct 21, 2020affected < 1.7.1_sr4.75-38.59.1fixed 1.7.1_sr4.75-38.59.1
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Serialization). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with net
- CVE-2019-17639Jul 15, 2020affected < 1.7.1_sr4.70-38.56.1fixed 1.7.1_sr4.70-38.56.1
In Eclipse OpenJ9 prior to version 0.21 on Power platforms, calling the System.arraycopy method with a length longer than the length of the source or destination array can, in certain specially crafted code patterns, cause the current method to return prematurely with an undefine
- CVE-2020-14621Jul 15, 2020affected < 1.7.1_sr4.70-38.56.1fixed 1.7.1_sr4.70-38.56.1
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: JAXP). Supported versions that are affected are Java SE: 7u261, 8u251, 11.0.7 and 14.0.1; Java SE Embedded: 8u251. Easily exploitable vulnerability allows unauthenticated attacker with network ac
- CVE-2020-14593Jul 15, 2020affected < 1.7.1_sr4.70-38.56.1fixed 1.7.1_sr4.70-38.56.1
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: 2D). Supported versions that are affected are Java SE: 7u261, 8u251, 11.0.7 and 14.0.1; Java SE Embedded: 8u251. Easily exploitable vulnerability allows unauthenticated attacker with network acce
- CVE-2020-14583Jul 15, 2020affected < 1.7.1_sr4.70-38.56.1fixed 1.7.1_sr4.70-38.56.1
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u261, 8u251, 11.0.7 and 14.0.1; Java SE Embedded: 8u251. Difficult to exploit vulnerability allows unauthenticated attacker with net
- CVE-2020-14579Jul 15, 2020affected < 1.7.1_sr4.70-38.56.1fixed 1.7.1_sr4.70-38.56.1
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u261 and 8u251; Java SE Embedded: 8u251. Difficult to exploit vulnerability allows unauthenticated attacker with network access via
- CVE-2020-14578Jul 15, 2020affected < 1.7.1_sr4.70-38.56.1fixed 1.7.1_sr4.70-38.56.1
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u261 and 8u251; Java SE Embedded: 8u251. Difficult to exploit vulnerability allows unauthenticated attacker with network access via
- CVE-2020-14577Jul 15, 2020affected < 1.7.1_sr4.70-38.56.1fixed 1.7.1_sr4.70-38.56.1
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: JSSE). Supported versions that are affected are Java SE: 7u261, 8u251, 11.0.7 and 14.0.1; Java SE Embedded: 8u251. Difficult to exploit vulnerability allows unauthenticated attacker with network
Page 3 of 3