rpm package
suse/java-1_7_1-ibm&distro=SUSE Linux Enterprise Software Development Kit 12 SP3
pkg:rpm/suse/java-1_7_1-ibm&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP3
Vulnerabilities (82)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2018-2814 | — | < 1.7.1_sr4.25-38.23.1 | 1.7.1_sr4.25-38.23.1 | Apr 19, 2018 | Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Hotspot). Supported versions that are affected are Java SE: 6u181, 7u171, 8u162 and 10; Java SE Embedded: 8u161. Difficult to exploit vulnerability allows unauthenticated attacker with netwo | ||
| CVE-2018-2800 | — | < 1.7.1_sr4.25-38.23.1 | 1.7.1_sr4.25-38.23.1 | Apr 19, 2018 | Vulnerability in the Java SE, JRockit component of Oracle Java SE (subcomponent: RMI). Supported versions that are affected are Java SE: 6u181, 7u171 and 8u162; JRockit: R28.3.17. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple | ||
| CVE-2018-2799 | — | < 1.7.1_sr4.25-38.23.1 | 1.7.1_sr4.25-38.23.1 | Apr 19, 2018 | Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JAXP). Supported versions that are affected are Java SE: 7u171, 8u162 and 10; Java SE Embedded: 8u161; JRockit: R28.3.17. Easily exploitable vulnerability allows unauthenticated att | ||
| CVE-2018-2798 | — | < 1.7.1_sr4.25-38.23.1 | 1.7.1_sr4.25-38.23.1 | Apr 19, 2018 | Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: AWT). Supported versions that are affected are Java SE: 6u181, 7u171, 8u162 and 10; Java SE Embedded: 8u161; JRockit: R28.3.17. Easily exploitable vulnerability allows unauthenticat | ||
| CVE-2018-2797 | — | < 1.7.1_sr4.25-38.23.1 | 1.7.1_sr4.25-38.23.1 | Apr 19, 2018 | Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JMX). Supported versions that are affected are Java SE: 6u181, 7u171, 8u162 and 10; Java SE Embedded: 8u161; JRockit: R28.3.17. Easily exploitable vulnerability allows unauthenticat | ||
| CVE-2018-2796 | — | < 1.7.1_sr4.25-38.23.1 | 1.7.1_sr4.25-38.23.1 | Apr 19, 2018 | Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Concurrency). Supported versions that are affected are Java SE: 7u171, 8u162 and 10; Java SE Embedded: 8u161; JRockit: R28.3.17. Easily exploitable vulnerability allows unauthentica | ||
| CVE-2018-2795 | — | < 1.7.1_sr4.25-38.23.1 | 1.7.1_sr4.25-38.23.1 | Apr 19, 2018 | Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Security). Supported versions that are affected are Java SE: 6u181, 7u171, 8u162 and 10; Java SE Embedded: 8u161; JRockit: R28.3.17. Easily exploitable vulnerability allows unauthen | ||
| CVE-2018-2794 | — | < 1.7.1_sr4.25-38.23.1 | 1.7.1_sr4.25-38.23.1 | Apr 19, 2018 | Vulnerability in the Java SE, JRockit component of Oracle Java SE (subcomponent: Security). Supported versions that are affected are Java SE: 6u181, 7u171, 8u162, 10 and JRockit: R28.3.17. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infras | ||
| CVE-2018-2790 | — | < 1.7.1_sr4.25-38.23.1 | 1.7.1_sr4.25-38.23.1 | Apr 19, 2018 | Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Security). Supported versions that are affected are Java SE: 6u181, 7u171, 8u162 and 10; Java SE Embedded: 8u161. Difficult to exploit vulnerability allows unauthenticated attacker with netw | ||
| CVE-2018-2783 | — | < 1.7.1_sr4.25-38.23.1 | 1.7.1_sr4.25-38.23.1 | Apr 19, 2018 | Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Security). Supported versions that are affected are Java SE: 6u181, 7u161 and 8u152; Java SE Embedded: 8u152; JRockit: R28.3.17. Difficult to exploit vulnerability allows unauthenti | ||
| CVE-2018-1417 | — | < 1.7.1_sr4.25-38.23.1 | 1.7.1_sr4.25-38.23.1 | Feb 22, 2018 | Under certain circumstances, a flaw in the J9 JVM (IBM SDK, Java Technology Edition 7.1 and 8.0) allows untrusted code running under a security manager to elevate its privileges. IBM X-Force ID: 138823. | ||
| CVE-2018-2678 | — | < 1.7.1_sr4.20-38.12.1 | 1.7.1_sr4.20-38.12.1 | Jan 18, 2018 | Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JNDI). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Easily exploitable vulnerability allows unauthent | ||
| CVE-2018-2677 | — | < 1.7.1_sr4.20-38.12.1 | 1.7.1_sr4.20-38.12.1 | Jan 18, 2018 | Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: AWT). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151. Easily exploitable vulnerability allows unauthenticated attacker with network | ||
| CVE-2018-2663 | — | < 1.7.1_sr4.20-38.12.1 | 1.7.1_sr4.20-38.12.1 | Jan 18, 2018 | Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Easily exploitable vulnerability allows unau | ||
| CVE-2018-2657 | — | < 1.7.1_sr4.20-38.12.1 | 1.7.1_sr4.20-38.12.1 | Jan 18, 2018 | Vulnerability in the Java SE, JRockit component of Oracle Java SE (subcomponent: Serialization). Supported versions that are affected are Java SE: 6u171 and 7u161; JRockit: R28.3.16. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple | ||
| CVE-2018-2641 | — | < 1.7.1_sr4.20-38.12.1 | 1.7.1_sr4.20-38.12.1 | Jan 18, 2018 | Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: AWT). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151. Difficult to exploit vulnerability allows unauthenticated attacker with networ | ||
| CVE-2018-2637 | — | < 1.7.1_sr4.20-38.12.1 | 1.7.1_sr4.20-38.12.1 | Jan 18, 2018 | Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JMX). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Difficult to exploit vulnerability allows unauthen | ||
| CVE-2018-2634 | — | < 1.7.1_sr4.20-38.12.1 | 1.7.1_sr4.20-38.12.1 | Jan 18, 2018 | Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: JGSS). Supported versions that are affected are Java SE: 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151. Difficult to exploit vulnerability allows unauthenticated attacker with network acce | ||
| CVE-2018-2633 | — | < 1.7.1_sr4.20-38.12.1 | 1.7.1_sr4.20-38.12.1 | Jan 18, 2018 | Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JNDI). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Difficult to exploit vulnerability allows unauthe | ||
| CVE-2018-2618 | — | < 1.7.1_sr4.20-38.12.1 | 1.7.1_sr4.20-38.12.1 | Jan 18, 2018 | Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JCE). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Difficult to exploit vulnerability allows unauthen |
- CVE-2018-2814Apr 19, 2018affected < 1.7.1_sr4.25-38.23.1fixed 1.7.1_sr4.25-38.23.1
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Hotspot). Supported versions that are affected are Java SE: 6u181, 7u171, 8u162 and 10; Java SE Embedded: 8u161. Difficult to exploit vulnerability allows unauthenticated attacker with netwo
- CVE-2018-2800Apr 19, 2018affected < 1.7.1_sr4.25-38.23.1fixed 1.7.1_sr4.25-38.23.1
Vulnerability in the Java SE, JRockit component of Oracle Java SE (subcomponent: RMI). Supported versions that are affected are Java SE: 6u181, 7u171 and 8u162; JRockit: R28.3.17. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple
- CVE-2018-2799Apr 19, 2018affected < 1.7.1_sr4.25-38.23.1fixed 1.7.1_sr4.25-38.23.1
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JAXP). Supported versions that are affected are Java SE: 7u171, 8u162 and 10; Java SE Embedded: 8u161; JRockit: R28.3.17. Easily exploitable vulnerability allows unauthenticated att
- CVE-2018-2798Apr 19, 2018affected < 1.7.1_sr4.25-38.23.1fixed 1.7.1_sr4.25-38.23.1
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: AWT). Supported versions that are affected are Java SE: 6u181, 7u171, 8u162 and 10; Java SE Embedded: 8u161; JRockit: R28.3.17. Easily exploitable vulnerability allows unauthenticat
- CVE-2018-2797Apr 19, 2018affected < 1.7.1_sr4.25-38.23.1fixed 1.7.1_sr4.25-38.23.1
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JMX). Supported versions that are affected are Java SE: 6u181, 7u171, 8u162 and 10; Java SE Embedded: 8u161; JRockit: R28.3.17. Easily exploitable vulnerability allows unauthenticat
- CVE-2018-2796Apr 19, 2018affected < 1.7.1_sr4.25-38.23.1fixed 1.7.1_sr4.25-38.23.1
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Concurrency). Supported versions that are affected are Java SE: 7u171, 8u162 and 10; Java SE Embedded: 8u161; JRockit: R28.3.17. Easily exploitable vulnerability allows unauthentica
- CVE-2018-2795Apr 19, 2018affected < 1.7.1_sr4.25-38.23.1fixed 1.7.1_sr4.25-38.23.1
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Security). Supported versions that are affected are Java SE: 6u181, 7u171, 8u162 and 10; Java SE Embedded: 8u161; JRockit: R28.3.17. Easily exploitable vulnerability allows unauthen
- CVE-2018-2794Apr 19, 2018affected < 1.7.1_sr4.25-38.23.1fixed 1.7.1_sr4.25-38.23.1
Vulnerability in the Java SE, JRockit component of Oracle Java SE (subcomponent: Security). Supported versions that are affected are Java SE: 6u181, 7u171, 8u162, 10 and JRockit: R28.3.17. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infras
- CVE-2018-2790Apr 19, 2018affected < 1.7.1_sr4.25-38.23.1fixed 1.7.1_sr4.25-38.23.1
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Security). Supported versions that are affected are Java SE: 6u181, 7u171, 8u162 and 10; Java SE Embedded: 8u161. Difficult to exploit vulnerability allows unauthenticated attacker with netw
- CVE-2018-2783Apr 19, 2018affected < 1.7.1_sr4.25-38.23.1fixed 1.7.1_sr4.25-38.23.1
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Security). Supported versions that are affected are Java SE: 6u181, 7u161 and 8u152; Java SE Embedded: 8u152; JRockit: R28.3.17. Difficult to exploit vulnerability allows unauthenti
- CVE-2018-1417Feb 22, 2018affected < 1.7.1_sr4.25-38.23.1fixed 1.7.1_sr4.25-38.23.1
Under certain circumstances, a flaw in the J9 JVM (IBM SDK, Java Technology Edition 7.1 and 8.0) allows untrusted code running under a security manager to elevate its privileges. IBM X-Force ID: 138823.
- CVE-2018-2678Jan 18, 2018affected < 1.7.1_sr4.20-38.12.1fixed 1.7.1_sr4.20-38.12.1
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JNDI). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Easily exploitable vulnerability allows unauthent
- CVE-2018-2677Jan 18, 2018affected < 1.7.1_sr4.20-38.12.1fixed 1.7.1_sr4.20-38.12.1
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: AWT). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151. Easily exploitable vulnerability allows unauthenticated attacker with network
- CVE-2018-2663Jan 18, 2018affected < 1.7.1_sr4.20-38.12.1fixed 1.7.1_sr4.20-38.12.1
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Easily exploitable vulnerability allows unau
- CVE-2018-2657Jan 18, 2018affected < 1.7.1_sr4.20-38.12.1fixed 1.7.1_sr4.20-38.12.1
Vulnerability in the Java SE, JRockit component of Oracle Java SE (subcomponent: Serialization). Supported versions that are affected are Java SE: 6u171 and 7u161; JRockit: R28.3.16. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple
- CVE-2018-2641Jan 18, 2018affected < 1.7.1_sr4.20-38.12.1fixed 1.7.1_sr4.20-38.12.1
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: AWT). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151. Difficult to exploit vulnerability allows unauthenticated attacker with networ
- CVE-2018-2637Jan 18, 2018affected < 1.7.1_sr4.20-38.12.1fixed 1.7.1_sr4.20-38.12.1
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JMX). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Difficult to exploit vulnerability allows unauthen
- CVE-2018-2634Jan 18, 2018affected < 1.7.1_sr4.20-38.12.1fixed 1.7.1_sr4.20-38.12.1
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: JGSS). Supported versions that are affected are Java SE: 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151. Difficult to exploit vulnerability allows unauthenticated attacker with network acce
- CVE-2018-2633Jan 18, 2018affected < 1.7.1_sr4.20-38.12.1fixed 1.7.1_sr4.20-38.12.1
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JNDI). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Difficult to exploit vulnerability allows unauthe
- CVE-2018-2618Jan 18, 2018affected < 1.7.1_sr4.20-38.12.1fixed 1.7.1_sr4.20-38.12.1
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JCE). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Difficult to exploit vulnerability allows unauthen
Page 2 of 5