rpm package
suse/java-1_8_0-ibm&distro=SUSE Linux Enterprise Server 15 SP3-LTSS
pkg:rpm/suse/java-1_8_0-ibm&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSS
Vulnerabilities (66)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2024-21145 | — | < 1.8.0_sr8.30-150000.3.92.1 | 1.8.0_sr8.30-150000.3.92.1 | Jul 16, 2024 | Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: 2D). Supported versions that are affected are Oracle Java SE: 8u411, 8u411-perf, 11.0.23, 17.0.11, 21.0.3, 22.0.1; Oracle GraalVM for JDK: 17.0.11 | ||
| CVE-2024-21144 | — | < 1.8.0_sr8.30-150000.3.92.1 | 1.8.0_sr8.30-150000.3.92.1 | Jul 16, 2024 | Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Concurrency). Supported versions that are affected are Oracle Java SE: 8u411, 8u411-perf, 11.0.23; Oracle GraalVM Enterprise Edition: 20.3.14 and 21.3.10. Difficult to e | ||
| CVE-2024-21140 | — | < 1.8.0_sr8.30-150000.3.92.1 | 1.8.0_sr8.30-150000.3.92.1 | Jul 16, 2024 | Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 8u411, 8u411-perf, 11.0.23, 17.0.11, 21.0.3, 22.0.1; Oracle GraalVM for JDK: 17 | ||
| CVE-2024-21138 | — | < 1.8.0_sr8.30-150000.3.92.1 | 1.8.0_sr8.30-150000.3.92.1 | Jul 16, 2024 | Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 8u411, 8u411-perf, 11.0.23, 17.0.11, 21.0.3, 22.0.1; Oracle GraalVM for JDK: 17 | ||
| CVE-2024-21131 | — | < 1.8.0_sr8.30-150000.3.92.1 | 1.8.0_sr8.30-150000.3.92.1 | Jul 16, 2024 | Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 8u411, 8u411-perf, 11.0.23, 17.0.11, 21.0.3, 22.0.1; Oracle GraalVM for JDK: 17 | ||
| CVE-2024-3933 | — | < 1.8.0_sr8.35-150000.3.95.1 | 1.8.0_sr8.35-150000.3.95.1 | May 27, 2024 | In Eclipse OpenJ9 release versions prior to 0.44.0 and after 0.13.0, when running with JVM option -Xgc:concurrentScavenge, the sequence generated for System.arrayCopy on the IBM Z platform with hardware and software support for guarded storage [1], could allow access to a buffer | ||
| CVE-2023-38264 | — | < 1.8.0_sr8.25-150000.3.89.1 | 1.8.0_sr8.25-150000.3.89.1 | May 10, 2024 | The IBM SDK, Java Technology Edition's Object Request Broker (ORB) 7.1.0.0 through 7.1.5.21 and 8.0.0.0 through 8.0.8.21 is vulnerable to a denial of service attack in some circumstances due to improper enforcement of the JEP 290 MaxRef and MaxDepth deserialization filters. IBM | ||
| CVE-2024-21094 | — | < 1.8.0_sr8.25-150000.3.89.1 | 1.8.0_sr8.25-150000.3.89.1 | Apr 16, 2024 | Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 8u401, 8u401-perf, 11.0.22, 17.0.10, 21.0.2, 22; Oracle GraalVM for JDK: 17.0.1 | ||
| CVE-2024-21085 | — | < 1.8.0_sr8.25-150000.3.89.1 | 1.8.0_sr8.25-150000.3.89.1 | Apr 16, 2024 | Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Concurrency). Supported versions that are affected are Oracle Java SE: 8u401, 8u401-perf, 11.0.22; Oracle GraalVM Enterprise Edition: 20.3.13 and 21.3.9. Difficult to ex | ||
| CVE-2024-21068 | — | < 1.8.0_sr8.25-150000.3.89.1 | 1.8.0_sr8.25-150000.3.89.1 | Apr 16, 2024 | Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 8u401-perf, 11.0.22, 17.0.10, 21.0.2, 22; Oracle GraalVM for JDK: 17.0.10, 21.0 | ||
| CVE-2024-21012 | — | < 1.8.0_sr8.25-150000.3.89.1 | 1.8.0_sr8.25-150000.3.89.1 | Apr 16, 2024 | Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Networking). Supported versions that are affected are Oracle Java SE: 11.0.22, 17.0.10, 21.0.2, 22; Oracle GraalVM for JDK: 17.0.10, 21.0.2, 22; O | ||
| CVE-2024-21011 | — | < 1.8.0_sr8.25-150000.3.89.1 | 1.8.0_sr8.25-150000.3.89.1 | Apr 16, 2024 | Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 8u401, 8u401-perf, 11.0.22, 17.0.10, 21.0.2, 22; Oracle GraalVM for JDK: 17.0.1 | ||
| CVE-2024-20945 | — | < 1.8.0_sr8.20-150000.3.86.1 | 1.8.0_sr8.20-150000.3.86.1 | Feb 17, 2024 | Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Security). Supported versions that are affected are Oracle Java SE: 8u391, 8u391-perf, 11.0.21, 17.0.9, 21.0.1; Oracle GraalVM for JDK: 17.0.9, 21 | ||
| CVE-2024-20921 | — | < 1.8.0_sr8.20-150000.3.86.1 | 1.8.0_sr8.20-150000.3.86.1 | Feb 17, 2024 | Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 8u391, 8u391-perf, 11.0.21, 17.0.9, 21.0.1; Oracle GraalVM for JDK: 17.0.9, 21. | ||
| CVE-2024-20919 | — | < 1.8.0_sr8.20-150000.3.86.1 | 1.8.0_sr8.20-150000.3.86.1 | Feb 17, 2024 | Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 8u391, 8u391-perf, 11.0.21, 17.0.9, 21.0.1; Oracle GraalVM for JDK: 17.0.9, 21. | ||
| CVE-2024-20952 | — | < 1.8.0_sr8.20-150000.3.86.1 | 1.8.0_sr8.20-150000.3.86.1 | Jan 16, 2024 | Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Security). Supported versions that are affected are Oracle Java SE: 8u391, 8u391-perf, 11.0.21, 17.0.9, 21.0.1; Oracle GraalVM for JDK: 17.0.9, 21 | ||
| CVE-2024-20932 | — | < 1.8.0_sr8.20-150000.3.86.1 | 1.8.0_sr8.20-150000.3.86.1 | Jan 16, 2024 | Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Security). Supported versions that are affected are Oracle Java SE: 17.0.9; Oracle GraalVM for JDK: 17.0.9; Oracle GraalVM Enterprise Edition: 21. | ||
| CVE-2024-20926 | — | < 1.8.0_sr8.20-150000.3.86.1 | 1.8.0_sr8.20-150000.3.86.1 | Jan 16, 2024 | Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Scripting). Supported versions that are affected are Oracle Java SE: 8u391, 8u391-perf, 11.0.21; Oracle GraalVM for JDK: 17.0.9; Oracle GraalVM En | ||
| CVE-2024-20918 | — | < 1.8.0_sr8.20-150000.3.86.1 | 1.8.0_sr8.20-150000.3.86.1 | Jan 16, 2024 | Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 8u391, 8u391-perf, 11.0.21, 17.0.9, 21.0.1; Oracle GraalVM for JDK: 17.0.9, 21. | ||
| CVE-2023-5676 | — | < 1.8.0_sr8.15-150000.3.83.1 | 1.8.0_sr8.15-150000.3.83.1 | Nov 15, 2023 | In Eclipse OpenJ9 before version 0.41.0, the JVM can be forced into an infinite busy hang on a spinlock or a segmentation fault if a shutdown signal (SIGTERM, SIGINT or SIGHUP) is received before the JVM has finished initializing. |
- CVE-2024-21145Jul 16, 2024affected < 1.8.0_sr8.30-150000.3.92.1fixed 1.8.0_sr8.30-150000.3.92.1
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: 2D). Supported versions that are affected are Oracle Java SE: 8u411, 8u411-perf, 11.0.23, 17.0.11, 21.0.3, 22.0.1; Oracle GraalVM for JDK: 17.0.11
- CVE-2024-21144Jul 16, 2024affected < 1.8.0_sr8.30-150000.3.92.1fixed 1.8.0_sr8.30-150000.3.92.1
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Concurrency). Supported versions that are affected are Oracle Java SE: 8u411, 8u411-perf, 11.0.23; Oracle GraalVM Enterprise Edition: 20.3.14 and 21.3.10. Difficult to e
- CVE-2024-21140Jul 16, 2024affected < 1.8.0_sr8.30-150000.3.92.1fixed 1.8.0_sr8.30-150000.3.92.1
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 8u411, 8u411-perf, 11.0.23, 17.0.11, 21.0.3, 22.0.1; Oracle GraalVM for JDK: 17
- CVE-2024-21138Jul 16, 2024affected < 1.8.0_sr8.30-150000.3.92.1fixed 1.8.0_sr8.30-150000.3.92.1
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 8u411, 8u411-perf, 11.0.23, 17.0.11, 21.0.3, 22.0.1; Oracle GraalVM for JDK: 17
- CVE-2024-21131Jul 16, 2024affected < 1.8.0_sr8.30-150000.3.92.1fixed 1.8.0_sr8.30-150000.3.92.1
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 8u411, 8u411-perf, 11.0.23, 17.0.11, 21.0.3, 22.0.1; Oracle GraalVM for JDK: 17
- CVE-2024-3933May 27, 2024affected < 1.8.0_sr8.35-150000.3.95.1fixed 1.8.0_sr8.35-150000.3.95.1
In Eclipse OpenJ9 release versions prior to 0.44.0 and after 0.13.0, when running with JVM option -Xgc:concurrentScavenge, the sequence generated for System.arrayCopy on the IBM Z platform with hardware and software support for guarded storage [1], could allow access to a buffer
- CVE-2023-38264May 10, 2024affected < 1.8.0_sr8.25-150000.3.89.1fixed 1.8.0_sr8.25-150000.3.89.1
The IBM SDK, Java Technology Edition's Object Request Broker (ORB) 7.1.0.0 through 7.1.5.21 and 8.0.0.0 through 8.0.8.21 is vulnerable to a denial of service attack in some circumstances due to improper enforcement of the JEP 290 MaxRef and MaxDepth deserialization filters. IBM
- CVE-2024-21094Apr 16, 2024affected < 1.8.0_sr8.25-150000.3.89.1fixed 1.8.0_sr8.25-150000.3.89.1
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 8u401, 8u401-perf, 11.0.22, 17.0.10, 21.0.2, 22; Oracle GraalVM for JDK: 17.0.1
- CVE-2024-21085Apr 16, 2024affected < 1.8.0_sr8.25-150000.3.89.1fixed 1.8.0_sr8.25-150000.3.89.1
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Concurrency). Supported versions that are affected are Oracle Java SE: 8u401, 8u401-perf, 11.0.22; Oracle GraalVM Enterprise Edition: 20.3.13 and 21.3.9. Difficult to ex
- CVE-2024-21068Apr 16, 2024affected < 1.8.0_sr8.25-150000.3.89.1fixed 1.8.0_sr8.25-150000.3.89.1
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 8u401-perf, 11.0.22, 17.0.10, 21.0.2, 22; Oracle GraalVM for JDK: 17.0.10, 21.0
- CVE-2024-21012Apr 16, 2024affected < 1.8.0_sr8.25-150000.3.89.1fixed 1.8.0_sr8.25-150000.3.89.1
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Networking). Supported versions that are affected are Oracle Java SE: 11.0.22, 17.0.10, 21.0.2, 22; Oracle GraalVM for JDK: 17.0.10, 21.0.2, 22; O
- CVE-2024-21011Apr 16, 2024affected < 1.8.0_sr8.25-150000.3.89.1fixed 1.8.0_sr8.25-150000.3.89.1
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 8u401, 8u401-perf, 11.0.22, 17.0.10, 21.0.2, 22; Oracle GraalVM for JDK: 17.0.1
- CVE-2024-20945Feb 17, 2024affected < 1.8.0_sr8.20-150000.3.86.1fixed 1.8.0_sr8.20-150000.3.86.1
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Security). Supported versions that are affected are Oracle Java SE: 8u391, 8u391-perf, 11.0.21, 17.0.9, 21.0.1; Oracle GraalVM for JDK: 17.0.9, 21
- CVE-2024-20921Feb 17, 2024affected < 1.8.0_sr8.20-150000.3.86.1fixed 1.8.0_sr8.20-150000.3.86.1
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 8u391, 8u391-perf, 11.0.21, 17.0.9, 21.0.1; Oracle GraalVM for JDK: 17.0.9, 21.
- CVE-2024-20919Feb 17, 2024affected < 1.8.0_sr8.20-150000.3.86.1fixed 1.8.0_sr8.20-150000.3.86.1
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 8u391, 8u391-perf, 11.0.21, 17.0.9, 21.0.1; Oracle GraalVM for JDK: 17.0.9, 21.
- CVE-2024-20952Jan 16, 2024affected < 1.8.0_sr8.20-150000.3.86.1fixed 1.8.0_sr8.20-150000.3.86.1
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Security). Supported versions that are affected are Oracle Java SE: 8u391, 8u391-perf, 11.0.21, 17.0.9, 21.0.1; Oracle GraalVM for JDK: 17.0.9, 21
- CVE-2024-20932Jan 16, 2024affected < 1.8.0_sr8.20-150000.3.86.1fixed 1.8.0_sr8.20-150000.3.86.1
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Security). Supported versions that are affected are Oracle Java SE: 17.0.9; Oracle GraalVM for JDK: 17.0.9; Oracle GraalVM Enterprise Edition: 21.
- CVE-2024-20926Jan 16, 2024affected < 1.8.0_sr8.20-150000.3.86.1fixed 1.8.0_sr8.20-150000.3.86.1
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Scripting). Supported versions that are affected are Oracle Java SE: 8u391, 8u391-perf, 11.0.21; Oracle GraalVM for JDK: 17.0.9; Oracle GraalVM En
- CVE-2024-20918Jan 16, 2024affected < 1.8.0_sr8.20-150000.3.86.1fixed 1.8.0_sr8.20-150000.3.86.1
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 8u391, 8u391-perf, 11.0.21, 17.0.9, 21.0.1; Oracle GraalVM for JDK: 17.0.9, 21.
- CVE-2023-5676Nov 15, 2023affected < 1.8.0_sr8.15-150000.3.83.1fixed 1.8.0_sr8.15-150000.3.83.1
In Eclipse OpenJ9 before version 0.41.0, the JVM can be forced into an infinite busy hang on a spinlock or a segmentation fault if a shutdown signal (SIGTERM, SIGINT or SIGHUP) is received before the JVM has finished initializing.
Page 2 of 4