rpm package
suse/java-1_7_1-ibm&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP1
pkg:rpm/suse/java-1_7_1-ibm&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1
Vulnerabilities (174)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2015-4810 | — | < 1.7.1_sr3.20-18.1 | 1.7.1_sr3.20-18.1 | Oct 21, 2015 | Unspecified vulnerability in Oracle Java SE 7u85 and 8u60 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Deployment. | ||
| CVE-2015-4806 | — | < 1.7.1_sr3.20-18.1 | 1.7.1_sr3.20-18.1 | Oct 21, 2015 | Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect confidentiality and integrity via unknown vectors related to Libraries. | ||
| CVE-2015-4805 | — | < 1.7.1_sr3.20-18.1 | 1.7.1_sr3.20-18.1 | Oct 21, 2015 | Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Serialization. | ||
| CVE-2015-4803 | — | < 1.7.1_sr3.20-18.1 | 1.7.1_sr3.20-18.1 | Oct 21, 2015 | Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60; Java SE Embedded 8u51; and JRockit R28.3.7 allows remote attackers to affect availability via vectors related to JAXP, a different vulnerability than CVE-2015-4893 and CVE-2015-4911. | ||
| CVE-2015-4734 | — | < 1.7.1_sr3.20-18.1 | 1.7.1_sr3.20-18.1 | Oct 21, 2015 | Unspecified vulnerability in Oracle Java SE 6u101, 7u85 and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect confidentiality via vectors related to JGSS. | ||
| CVE-2015-0491 | — | < 1.7.1_sr3.20-18.1 | 1.7.1_sr3.20-18.1 | Apr 16, 2015 | Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40, and Java FX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2015-0459. | ||
| CVE-2015-0488 | — | < 1.7.1_sr3.20-18.1 | 1.7.1_sr3.20-18.1 | Apr 16, 2015 | Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40, and JRockit R28.3.5, allows remote attackers to affect availability via vectors related to JSSE. | ||
| CVE-2015-0480 | — | < 1.7.1_sr3.20-18.1 | 1.7.1_sr3.20-18.1 | Apr 16, 2015 | Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40 allows remote attackers to affect integrity and availability via unknown vectors related to Tools. | ||
| CVE-2015-0478 | — | < 1.7.1_sr3.20-18.1 | 1.7.1_sr3.20-18.1 | Apr 16, 2015 | Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40, and JRockit R28.3.5, allows remote attackers to affect confidentiality via vectors related to JCE. | ||
| CVE-2015-0477 | — | < 1.7.1_sr3.20-18.1 | 1.7.1_sr3.20-18.1 | Apr 16, 2015 | Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40 allows remote attackers to affect integrity via unknown vectors related to Beans. | ||
| CVE-2015-0469 | — | < 1.7.1_sr3.20-18.1 | 1.7.1_sr3.20-18.1 | Apr 16, 2015 | Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. | ||
| CVE-2015-0459 | — | < 1.7.1_sr3.20-18.1 | 1.7.1_sr3.20-18.1 | Apr 16, 2015 | Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40, and JavaFX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2015-0491. | ||
| CVE-2015-0458 | — | < 1.7.1_sr3.20-18.1 | 1.7.1_sr3.20-18.1 | Apr 16, 2015 | Unspecified vulnerability in in Oracle Java SE 6u91, 7u76, and 8u40 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment. | ||
| CVE-2015-0204 | — | < 1.7.1_sr3.20-18.1 | 1.7.1_sr3.20-18.1 | Jan 9, 2015 | The ssl3_get_key_exchange function in s3_clnt.c in OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k allows remote SSL servers to conduct RSA-to-EXPORT_RSA downgrade attacks and facilitate brute-force decryption by offering a weak ephemeral RSA key in a noncomp |
- CVE-2015-4810Oct 21, 2015affected < 1.7.1_sr3.20-18.1fixed 1.7.1_sr3.20-18.1
Unspecified vulnerability in Oracle Java SE 7u85 and 8u60 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.
- CVE-2015-4806Oct 21, 2015affected < 1.7.1_sr3.20-18.1fixed 1.7.1_sr3.20-18.1
Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect confidentiality and integrity via unknown vectors related to Libraries.
- CVE-2015-4805Oct 21, 2015affected < 1.7.1_sr3.20-18.1fixed 1.7.1_sr3.20-18.1
Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Serialization.
- CVE-2015-4803Oct 21, 2015affected < 1.7.1_sr3.20-18.1fixed 1.7.1_sr3.20-18.1
Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60; Java SE Embedded 8u51; and JRockit R28.3.7 allows remote attackers to affect availability via vectors related to JAXP, a different vulnerability than CVE-2015-4893 and CVE-2015-4911.
- CVE-2015-4734Oct 21, 2015affected < 1.7.1_sr3.20-18.1fixed 1.7.1_sr3.20-18.1
Unspecified vulnerability in Oracle Java SE 6u101, 7u85 and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect confidentiality via vectors related to JGSS.
- CVE-2015-0491Apr 16, 2015affected < 1.7.1_sr3.20-18.1fixed 1.7.1_sr3.20-18.1
Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40, and Java FX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2015-0459.
- CVE-2015-0488Apr 16, 2015affected < 1.7.1_sr3.20-18.1fixed 1.7.1_sr3.20-18.1
Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40, and JRockit R28.3.5, allows remote attackers to affect availability via vectors related to JSSE.
- CVE-2015-0480Apr 16, 2015affected < 1.7.1_sr3.20-18.1fixed 1.7.1_sr3.20-18.1
Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40 allows remote attackers to affect integrity and availability via unknown vectors related to Tools.
- CVE-2015-0478Apr 16, 2015affected < 1.7.1_sr3.20-18.1fixed 1.7.1_sr3.20-18.1
Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40, and JRockit R28.3.5, allows remote attackers to affect confidentiality via vectors related to JCE.
- CVE-2015-0477Apr 16, 2015affected < 1.7.1_sr3.20-18.1fixed 1.7.1_sr3.20-18.1
Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40 allows remote attackers to affect integrity via unknown vectors related to Beans.
- CVE-2015-0469Apr 16, 2015affected < 1.7.1_sr3.20-18.1fixed 1.7.1_sr3.20-18.1
Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.
- CVE-2015-0459Apr 16, 2015affected < 1.7.1_sr3.20-18.1fixed 1.7.1_sr3.20-18.1
Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40, and JavaFX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2015-0491.
- CVE-2015-0458Apr 16, 2015affected < 1.7.1_sr3.20-18.1fixed 1.7.1_sr3.20-18.1
Unspecified vulnerability in in Oracle Java SE 6u91, 7u76, and 8u40 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.
- CVE-2015-0204Jan 9, 2015affected < 1.7.1_sr3.20-18.1fixed 1.7.1_sr3.20-18.1
The ssl3_get_key_exchange function in s3_clnt.c in OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k allows remote SSL servers to conduct RSA-to-EXPORT_RSA downgrade attacks and facilitate brute-force decryption by offering a weak ephemeral RSA key in a noncomp
Page 9 of 9