rpm package
suse/java-1_8_0-ibm&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP3
pkg:rpm/suse/java-1_8_0-ibm&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP3
Vulnerabilities (182)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2017-10115 | Hig | 7.5 | < 1.8.0_sr4.10-30.5.1 | 1.8.0_sr4.10-30.5.1 | Aug 8, 2017 | Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JCE). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131; JRockit: R28.3.14. Easily exploitable vulnerability allows unauthenticated a | |
| CVE-2017-10111 | Cri | 9.6 | < 1.8.0_sr4.10-30.5.1 | 1.8.0_sr4.10-30.5.1 | Aug 8, 2017 | Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries). The supported version that is affected is Java SE: 8u131; Java SE Embedded: 8u131. Easily exploitable vulnerability allows unauthenticated attacker with network access via multip | |
| CVE-2017-10110 | Cri | 9.6 | < 1.8.0_sr4.10-30.5.1 | 1.8.0_sr4.10-30.5.1 | Aug 8, 2017 | Vulnerability in the Java SE component of Oracle Java SE (subcomponent: AWT). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java S | |
| CVE-2017-10109 | Med | 5.3 | < 1.8.0_sr4.10-30.5.1 | 1.8.0_sr4.10-30.5.1 | Aug 8, 2017 | Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Serialization). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131; JRockit: R28.3.14. Easily exploitable vulnerability allows unauthe | |
| CVE-2017-10108 | Med | 5.3 | < 1.8.0_sr4.10-30.5.1 | 1.8.0_sr4.10-30.5.1 | Aug 8, 2017 | Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Serialization). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131; JRockit: R28.3.14. Easily exploitable vulnerability allows unauthe | |
| CVE-2017-10107 | Cri | 9.6 | < 1.8.0_sr4.10-30.5.1 | 1.8.0_sr4.10-30.5.1 | Aug 8, 2017 | Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: RMI). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131. Easily exploitable vulnerability allows unauthenticated attacker with network access | |
| CVE-2017-10105 | Med | 4.3 | < 1.8.0_sr4.10-30.5.1 | 1.8.0_sr4.10-30.5.1 | Aug 8, 2017 | Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise | |
| CVE-2017-10102 | Cri | 9.0 | < 1.8.0_sr4.10-30.5.1 | 1.8.0_sr4.10-30.5.1 | Aug 8, 2017 | Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: RMI). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131. Difficult to exploit vulnerability allows unauthenticated attacker with network acces | |
| CVE-2017-10101 | Cri | 9.6 | < 1.8.0_sr4.10-30.5.1 | 1.8.0_sr4.10-30.5.1 | Aug 8, 2017 | Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: JAXP). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131. Easily exploitable vulnerability allows unauthenticated attacker with network access | |
| CVE-2017-10096 | Cri | 9.6 | < 1.8.0_sr4.10-30.5.1 | 1.8.0_sr4.10-30.5.1 | Aug 8, 2017 | Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: JAXP). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131. Easily exploitable vulnerability allows unauthenticated attacker with network access | |
| CVE-2017-10090 | Cri | 9.6 | < 1.8.0_sr4.10-30.5.1 | 1.8.0_sr4.10-30.5.1 | Aug 8, 2017 | Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 7u141 and 8u131; Java SE Embedded: 8u131. Easily exploitable vulnerability allows unauthenticated attacker with network access v | |
| CVE-2017-10089 | Cri | 9.6 | < 1.8.0_sr4.10-30.5.1 | 1.8.0_sr4.10-30.5.1 | Aug 8, 2017 | Vulnerability in the Java SE component of Oracle Java SE (subcomponent: ImageIO). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Ja | |
| CVE-2017-10087 | Cri | 9.6 | < 1.8.0_sr4.10-30.5.1 | 1.8.0_sr4.10-30.5.1 | Aug 8, 2017 | Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131. Easily exploitable vulnerability allows unauthenticated attacker with network a | |
| CVE-2017-10081 | Med | 4.3 | < 1.8.0_sr4.10-30.5.1 | 1.8.0_sr4.10-30.5.1 | Aug 8, 2017 | Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Hotspot). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131. Easily exploitable vulnerability allows unauthenticated attacker with network acc | |
| CVE-2017-10078 | Hig | 8.1 | < 1.8.0_sr4.10-30.5.1 | 1.8.0_sr4.10-30.5.1 | Aug 8, 2017 | Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Scripting). The supported version that is affected is Java SE: 8u131. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise Java SE. Successf | |
| CVE-2017-10074 | Hig | 8.3 | < 1.8.0_sr4.10-30.5.1 | 1.8.0_sr4.10-30.5.1 | Aug 8, 2017 | Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Hotspot). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131. Difficult to exploit vulnerability allows unauthenticated attacker with network a | |
| CVE-2017-10067 | Hig | 7.5 | < 1.8.0_sr4.10-30.5.1 | 1.8.0_sr4.10-30.5.1 | Aug 8, 2017 | Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Security). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise | |
| CVE-2017-10053 | Med | 5.3 | < 1.8.0_sr4.10-30.5.1 | 1.8.0_sr4.10-30.5.1 | Aug 8, 2017 | Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: 2D). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131; JRockit: R28.3.14. Easily exploitable vulnerability allows unauthenticated at | |
| CVE-2016-9841 | Cri | 9.8 | < 1.8.0_sr5.5-30.13.1 | 1.8.0_sr5.5-30.13.1 | May 23, 2017 | inffast.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by leveraging improper pointer arithmetic. | |
| CVE-2017-3732 | Med | 5.9 | < 1.8.0_sr5.20-30.36.1 | 1.8.0_sr5.20-30.36.1 | May 4, 2017 | There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL 1.0.2 before 1.0.2k and 1.1.0 before 1.1.0d. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and |
- affected < 1.8.0_sr4.10-30.5.1fixed 1.8.0_sr4.10-30.5.1
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JCE). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131; JRockit: R28.3.14. Easily exploitable vulnerability allows unauthenticated a
- affected < 1.8.0_sr4.10-30.5.1fixed 1.8.0_sr4.10-30.5.1
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries). The supported version that is affected is Java SE: 8u131; Java SE Embedded: 8u131. Easily exploitable vulnerability allows unauthenticated attacker with network access via multip
- affected < 1.8.0_sr4.10-30.5.1fixed 1.8.0_sr4.10-30.5.1
Vulnerability in the Java SE component of Oracle Java SE (subcomponent: AWT). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java S
- affected < 1.8.0_sr4.10-30.5.1fixed 1.8.0_sr4.10-30.5.1
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Serialization). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131; JRockit: R28.3.14. Easily exploitable vulnerability allows unauthe
- affected < 1.8.0_sr4.10-30.5.1fixed 1.8.0_sr4.10-30.5.1
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Serialization). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131; JRockit: R28.3.14. Easily exploitable vulnerability allows unauthe
- affected < 1.8.0_sr4.10-30.5.1fixed 1.8.0_sr4.10-30.5.1
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: RMI). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131. Easily exploitable vulnerability allows unauthenticated attacker with network access
- affected < 1.8.0_sr4.10-30.5.1fixed 1.8.0_sr4.10-30.5.1
Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise
- affected < 1.8.0_sr4.10-30.5.1fixed 1.8.0_sr4.10-30.5.1
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: RMI). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131. Difficult to exploit vulnerability allows unauthenticated attacker with network acces
- affected < 1.8.0_sr4.10-30.5.1fixed 1.8.0_sr4.10-30.5.1
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: JAXP). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131. Easily exploitable vulnerability allows unauthenticated attacker with network access
- affected < 1.8.0_sr4.10-30.5.1fixed 1.8.0_sr4.10-30.5.1
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: JAXP). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131. Easily exploitable vulnerability allows unauthenticated attacker with network access
- affected < 1.8.0_sr4.10-30.5.1fixed 1.8.0_sr4.10-30.5.1
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 7u141 and 8u131; Java SE Embedded: 8u131. Easily exploitable vulnerability allows unauthenticated attacker with network access v
- affected < 1.8.0_sr4.10-30.5.1fixed 1.8.0_sr4.10-30.5.1
Vulnerability in the Java SE component of Oracle Java SE (subcomponent: ImageIO). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Ja
- affected < 1.8.0_sr4.10-30.5.1fixed 1.8.0_sr4.10-30.5.1
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131. Easily exploitable vulnerability allows unauthenticated attacker with network a
- affected < 1.8.0_sr4.10-30.5.1fixed 1.8.0_sr4.10-30.5.1
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Hotspot). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131. Easily exploitable vulnerability allows unauthenticated attacker with network acc
- affected < 1.8.0_sr4.10-30.5.1fixed 1.8.0_sr4.10-30.5.1
Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Scripting). The supported version that is affected is Java SE: 8u131. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise Java SE. Successf
- affected < 1.8.0_sr4.10-30.5.1fixed 1.8.0_sr4.10-30.5.1
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Hotspot). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131. Difficult to exploit vulnerability allows unauthenticated attacker with network a
- affected < 1.8.0_sr4.10-30.5.1fixed 1.8.0_sr4.10-30.5.1
Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Security). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise
- affected < 1.8.0_sr4.10-30.5.1fixed 1.8.0_sr4.10-30.5.1
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: 2D). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131; JRockit: R28.3.14. Easily exploitable vulnerability allows unauthenticated at
- affected < 1.8.0_sr5.5-30.13.1fixed 1.8.0_sr5.5-30.13.1
inffast.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by leveraging improper pointer arithmetic.
- affected < 1.8.0_sr5.20-30.36.1fixed 1.8.0_sr5.20-30.36.1
There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL 1.0.2 before 1.0.2k and 1.1.0 before 1.1.0d. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and
Page 9 of 10