rpm package
suse/java-1_8_0-ibm&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP3
pkg:rpm/suse/java-1_8_0-ibm&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP3
Vulnerabilities (66)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2025-61748 | Low | 3.7 | < 1.8.0_sr8.55-150000.3.109.1 | 1.8.0_sr8.55-150000.3.109.1 | Oct 21, 2025 | Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 21.0.8 and 25; Oracle GraalVM for JDK: 21.0.8; Oracle GraalVM Enterprise Edi | |
| CVE-2025-53066 | Hig | 7.5 | < 1.8.0_sr8.55-150000.3.109.1 | 1.8.0_sr8.55-150000.3.109.1 | Oct 21, 2025 | Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JAXP). Supported versions that are affected are Oracle Java SE: 8u461, 8u461-perf, 11.0.28, 17.0.16, 21.0.8, 25; Oracle GraalVM for JDK: 17.0.16 a | |
| CVE-2025-53057 | Med | 5.9 | < 1.8.0_sr8.55-150000.3.109.1 | 1.8.0_sr8.55-150000.3.109.1 | Oct 21, 2025 | Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Security). Supported versions that are affected are Oracle Java SE: 8u461, 8u461-perf, 11.0.28, 17.0.16, 21.0.8, 25; Oracle GraalVM for JDK: 17.0. | |
| CVE-2025-30761 | Med | 5.9 | < 1.8.0_sr8.50-150000.3.104.1 | 1.8.0_sr8.50-150000.3.104.1 | Jul 15, 2025 | Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Scripting). Supported versions that are affected are Oracle Java SE: 8u451, 8u451-perf and 11.0.27; Oracle GraalVM Enterprise Edition: 21.3.14. Difficult to exploit vuln | |
| CVE-2025-50106 | Hig | 8.1 | < 1.8.0_sr8.50-150000.3.104.1 | 1.8.0_sr8.50-150000.3.104.1 | Jul 15, 2025 | Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: 2D). Supported versions that are affected are Oracle Java SE: 8u451, 8u451-perf, 11.0.27, 17.0.15, 21.0.7, 24.0.1; Oracle GraalVM for JDK: 17.0.15 | |
| CVE-2025-50059 | Hig | 8.6 | < 1.8.0_sr8.50-150000.3.104.1 | 1.8.0_sr8.50-150000.3.104.1 | Jul 15, 2025 | Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Networking). Supported versions that are affected are Oracle Java SE: 8u451-perf, 11.0.27, 17.0.15, 21.0.7, 24.0.1; Oracle GraalVM for JDK: 17.0.1 | |
| CVE-2025-30754 | Med | 4.8 | < 1.8.0_sr8.50-150000.3.104.1 | 1.8.0_sr8.50-150000.3.104.1 | Jul 15, 2025 | Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JSSE). Supported versions that are affected are Oracle Java SE: 8u451, 8u451-perf, 11.0.27, 17.0.15, 21.0.7, 24.0.1; Oracle GraalVM for JDK: 17.0. | |
| CVE-2025-30749 | Hig | 8.1 | < 1.8.0_sr8.50-150000.3.104.1 | 1.8.0_sr8.50-150000.3.104.1 | Jul 15, 2025 | Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: 2D). Supported versions that are affected are Oracle Java SE: 8u451, 8u451-perf, 11.0.27, 17.0.15, 21.0.7, 24.0.1; Oracle GraalVM for JDK: 17.0.15 | |
| CVE-2025-4447 | Hig | 7.8 | < 1.8.0_sr8.45-150000.3.101.1 | 1.8.0_sr8.45-150000.3.101.1 | May 9, 2025 | In Eclipse OpenJ9 versions up to 0.51, when used with OpenJDK version 8 a stack based buffer overflow can be caused by modifying a file on disk that is read when the JVM starts. | |
| CVE-2025-30698 | Med | 5.6 | < 1.8.0_sr8.45-150000.3.101.1 | 1.8.0_sr8.45-150000.3.101.1 | Apr 15, 2025 | Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: 2D). Supported versions that are affected are Oracle Java SE: 8u441, 8u441-perf, 11.0.26, 17.0.14, 21.0.6, 24; Oracle GraalVM for JDK: 17.0.14, 21 | |
| CVE-2025-30691 | Med | 4.8 | < 1.8.0_sr8.45-150000.3.101.1 | 1.8.0_sr8.45-150000.3.101.1 | Apr 15, 2025 | Vulnerability in Oracle Java SE (component: Compiler). Supported versions that are affected are Oracle Java SE: 21.0.6, 24; Oracle GraalVM for JDK: 21.0.6 and 24. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to co | |
| CVE-2025-21587 | Hig | 7.4 | < 1.8.0_sr8.45-150000.3.101.1 | 1.8.0_sr8.45-150000.3.101.1 | Apr 15, 2025 | Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JSSE). Supported versions that are affected are Oracle Java SE:8u441, 8u441-perf, 11.0.26, 17.0.14, 21.0.6, 24; Oracle GraalVM for JDK:17.0.14, 21 | |
| CVE-2025-21502 | Med | 4.8 | < 1.8.0_sr8.40-150000.3.98.1 | 1.8.0_sr8.40-150000.3.98.1 | Jan 21, 2025 | Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 8u431-perf, 11.0.25, 17.0.13, 21.0.5, 23.0.1; Oracle GraalVM for JDK: 17.0.13, | |
| CVE-2024-10917 | Low | 3.7 | < 1.8.0_sr8.40-150000.3.98.1 | 1.8.0_sr8.40-150000.3.98.1 | Nov 11, 2024 | In Eclipse OpenJ9 versions up to 0.47, the JNI function GetStringUTFLength may return an incorrect value which has wrapped around. From 0.48 the value is correct but may be truncated to include a smaller number of characters. | |
| CVE-2024-21235 | Med | 4.8 | < 1.8.0_sr8.35-150000.3.95.1 | 1.8.0_sr8.35-150000.3.95.1 | Oct 15, 2024 | Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 8u421, 8u421-perf, 11.0.24, 17.0.12, 21.0.4, 23; Oracle GraalVM for JDK: 17.0 | |
| CVE-2024-21217 | Low | 3.7 | < 1.8.0_sr8.35-150000.3.95.1 | 1.8.0_sr8.35-150000.3.95.1 | Oct 15, 2024 | Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Serialization). Supported versions that are affected are Oracle Java SE: 8u421, 8u421-perf, 11.0.24, 17.0.12, 21.0.4, 23; Oracle GraalVM for JDK: | |
| CVE-2024-21210 | Low | 3.7 | < 1.8.0_sr8.35-150000.3.95.1 | 1.8.0_sr8.35-150000.3.95.1 | Oct 15, 2024 | Vulnerability in Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 8u421, 8u421-perf, 11.0.24, 17.0.12, 21.0.4 and 23. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to co | |
| CVE-2024-21208 | Low | 3.7 | < 1.8.0_sr8.35-150000.3.95.1 | 1.8.0_sr8.35-150000.3.95.1 | Oct 15, 2024 | Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Networking). Supported versions that are affected are Oracle Java SE: 8u421, 8u421-perf, 11.0.24, 17.0.12, 21.0.4, 23; Oracle GraalVM for JDK: 17. | |
| CVE-2024-27267 | Med | 5.9 | < 1.8.0_sr8.30-150000.3.92.1 | 1.8.0_sr8.30-150000.3.92.1 | Aug 14, 2024 | The Object Request Broker (ORB) in IBM SDK, Java Technology Edition 7.1.0.0 through 7.1.5.18 and 8.0.0.0 through 8.0.8.26 is vulnerable to remote denial of service, caused by a race condition in the management of ORB listener threads. | |
| CVE-2024-21147 | Hig | 7.4 | < 1.8.0_sr8.30-150000.3.92.1 | 1.8.0_sr8.30-150000.3.92.1 | Jul 16, 2024 | Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 8u411, 8u411-perf, 11.0.23, 17.0.11, 21.0.3, 22.0.1; Oracle GraalVM for JDK: 17 |
- affected < 1.8.0_sr8.55-150000.3.109.1fixed 1.8.0_sr8.55-150000.3.109.1
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 21.0.8 and 25; Oracle GraalVM for JDK: 21.0.8; Oracle GraalVM Enterprise Edi
- affected < 1.8.0_sr8.55-150000.3.109.1fixed 1.8.0_sr8.55-150000.3.109.1
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JAXP). Supported versions that are affected are Oracle Java SE: 8u461, 8u461-perf, 11.0.28, 17.0.16, 21.0.8, 25; Oracle GraalVM for JDK: 17.0.16 a
- affected < 1.8.0_sr8.55-150000.3.109.1fixed 1.8.0_sr8.55-150000.3.109.1
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Security). Supported versions that are affected are Oracle Java SE: 8u461, 8u461-perf, 11.0.28, 17.0.16, 21.0.8, 25; Oracle GraalVM for JDK: 17.0.
- affected < 1.8.0_sr8.50-150000.3.104.1fixed 1.8.0_sr8.50-150000.3.104.1
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Scripting). Supported versions that are affected are Oracle Java SE: 8u451, 8u451-perf and 11.0.27; Oracle GraalVM Enterprise Edition: 21.3.14. Difficult to exploit vuln
- affected < 1.8.0_sr8.50-150000.3.104.1fixed 1.8.0_sr8.50-150000.3.104.1
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: 2D). Supported versions that are affected are Oracle Java SE: 8u451, 8u451-perf, 11.0.27, 17.0.15, 21.0.7, 24.0.1; Oracle GraalVM for JDK: 17.0.15
- affected < 1.8.0_sr8.50-150000.3.104.1fixed 1.8.0_sr8.50-150000.3.104.1
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Networking). Supported versions that are affected are Oracle Java SE: 8u451-perf, 11.0.27, 17.0.15, 21.0.7, 24.0.1; Oracle GraalVM for JDK: 17.0.1
- affected < 1.8.0_sr8.50-150000.3.104.1fixed 1.8.0_sr8.50-150000.3.104.1
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JSSE). Supported versions that are affected are Oracle Java SE: 8u451, 8u451-perf, 11.0.27, 17.0.15, 21.0.7, 24.0.1; Oracle GraalVM for JDK: 17.0.
- affected < 1.8.0_sr8.50-150000.3.104.1fixed 1.8.0_sr8.50-150000.3.104.1
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: 2D). Supported versions that are affected are Oracle Java SE: 8u451, 8u451-perf, 11.0.27, 17.0.15, 21.0.7, 24.0.1; Oracle GraalVM for JDK: 17.0.15
- affected < 1.8.0_sr8.45-150000.3.101.1fixed 1.8.0_sr8.45-150000.3.101.1
In Eclipse OpenJ9 versions up to 0.51, when used with OpenJDK version 8 a stack based buffer overflow can be caused by modifying a file on disk that is read when the JVM starts.
- affected < 1.8.0_sr8.45-150000.3.101.1fixed 1.8.0_sr8.45-150000.3.101.1
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: 2D). Supported versions that are affected are Oracle Java SE: 8u441, 8u441-perf, 11.0.26, 17.0.14, 21.0.6, 24; Oracle GraalVM for JDK: 17.0.14, 21
- affected < 1.8.0_sr8.45-150000.3.101.1fixed 1.8.0_sr8.45-150000.3.101.1
Vulnerability in Oracle Java SE (component: Compiler). Supported versions that are affected are Oracle Java SE: 21.0.6, 24; Oracle GraalVM for JDK: 21.0.6 and 24. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to co
- affected < 1.8.0_sr8.45-150000.3.101.1fixed 1.8.0_sr8.45-150000.3.101.1
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JSSE). Supported versions that are affected are Oracle Java SE:8u441, 8u441-perf, 11.0.26, 17.0.14, 21.0.6, 24; Oracle GraalVM for JDK:17.0.14, 21
- affected < 1.8.0_sr8.40-150000.3.98.1fixed 1.8.0_sr8.40-150000.3.98.1
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 8u431-perf, 11.0.25, 17.0.13, 21.0.5, 23.0.1; Oracle GraalVM for JDK: 17.0.13,
- affected < 1.8.0_sr8.40-150000.3.98.1fixed 1.8.0_sr8.40-150000.3.98.1
In Eclipse OpenJ9 versions up to 0.47, the JNI function GetStringUTFLength may return an incorrect value which has wrapped around. From 0.48 the value is correct but may be truncated to include a smaller number of characters.
- affected < 1.8.0_sr8.35-150000.3.95.1fixed 1.8.0_sr8.35-150000.3.95.1
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 8u421, 8u421-perf, 11.0.24, 17.0.12, 21.0.4, 23; Oracle GraalVM for JDK: 17.0
- affected < 1.8.0_sr8.35-150000.3.95.1fixed 1.8.0_sr8.35-150000.3.95.1
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Serialization). Supported versions that are affected are Oracle Java SE: 8u421, 8u421-perf, 11.0.24, 17.0.12, 21.0.4, 23; Oracle GraalVM for JDK:
- affected < 1.8.0_sr8.35-150000.3.95.1fixed 1.8.0_sr8.35-150000.3.95.1
Vulnerability in Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 8u421, 8u421-perf, 11.0.24, 17.0.12, 21.0.4 and 23. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to co
- affected < 1.8.0_sr8.35-150000.3.95.1fixed 1.8.0_sr8.35-150000.3.95.1
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Networking). Supported versions that are affected are Oracle Java SE: 8u421, 8u421-perf, 11.0.24, 17.0.12, 21.0.4, 23; Oracle GraalVM for JDK: 17.
- affected < 1.8.0_sr8.30-150000.3.92.1fixed 1.8.0_sr8.30-150000.3.92.1
The Object Request Broker (ORB) in IBM SDK, Java Technology Edition 7.1.0.0 through 7.1.5.18 and 8.0.0.0 through 8.0.8.26 is vulnerable to remote denial of service, caused by a race condition in the management of ORB listener threads.
- affected < 1.8.0_sr8.30-150000.3.92.1fixed 1.8.0_sr8.30-150000.3.92.1
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 8u411, 8u411-perf, 11.0.23, 17.0.11, 21.0.3, 22.0.1; Oracle GraalVM for JDK: 17
Page 1 of 4