rpm package
suse/java-1_7_1-ibm&distro=SUSE Linux Enterprise Software Development Kit 12 SP3
pkg:rpm/suse/java-1_7_1-ibm&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP3
Vulnerabilities (82)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2016-9841 | Cri | 9.8 | < 1.7.1_sr4.15-38.8.1 | 1.7.1_sr4.15-38.8.1 | May 23, 2017 | inffast.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by leveraging improper pointer arithmetic. | |
| CVE-2016-10165 | Hig | 7.1 | < 1.7.1_sr4.15-38.8.1 | 1.7.1_sr4.15-38.8.1 | Feb 3, 2017 | The Type_MLU_Read function in cmstypes.c in Little CMS (aka lcms2) allows remote attackers to obtain sensitive information or cause a denial of service via an image with a crafted ICC profile, which triggers an out-of-bounds heap read. |
- affected < 1.7.1_sr4.15-38.8.1fixed 1.7.1_sr4.15-38.8.1
inffast.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by leveraging improper pointer arithmetic.
- affected < 1.7.1_sr4.15-38.8.1fixed 1.7.1_sr4.15-38.8.1
The Type_MLU_Read function in cmstypes.c in Little CMS (aka lcms2) allows remote attackers to obtain sensitive information or cause a denial of service via an image with a crafted ICC profile, which triggers an out-of-bounds heap read.
Page 5 of 5