rpm package
suse/java-1_8_0-ibm&distro=SUSE Linux Enterprise Server 12 SP2-LTSS
pkg:rpm/suse/java-1_8_0-ibm&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2-LTSS
Vulnerabilities (99)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2020-27221 | — | < 1.8.0_sr6.25-30.81.1 | 1.8.0_sr6.25-30.81.1 | Jan 21, 2021 | In Eclipse OpenJ9 up to and including version 0.23, there is potential for a stack-based buffer overflow when the virtual machine or JNI natives are converting from UTF-8 characters to platform encoding. | ||
| CVE-2020-14803 | — | < 1.8.0_sr6.20-30.78.1 | 1.8.0_sr6.20-30.78.1 | Oct 21, 2020 | Vulnerability in the Java SE product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 11.0.8 and 15. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Succe | ||
| CVE-2020-14798 | — | < 1.8.0_sr6.20-30.78.1 | 1.8.0_sr6.20-30.78.1 | Oct 21, 2020 | Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network | ||
| CVE-2020-14797 | — | < 1.8.0_sr6.20-30.78.1 | 1.8.0_sr6.20-30.78.1 | Oct 21, 2020 | Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network | ||
| CVE-2020-14796 | — | < 1.8.0_sr6.20-30.78.1 | 1.8.0_sr6.20-30.78.1 | Oct 21, 2020 | Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network | ||
| CVE-2020-14792 | — | < 1.8.0_sr6.20-30.78.1 | 1.8.0_sr6.20-30.78.1 | Oct 21, 2020 | Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network a | ||
| CVE-2020-14781 | — | < 1.8.0_sr6.20-30.78.1 | 1.8.0_sr6.20-30.78.1 | Oct 21, 2020 | Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: JNDI). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network acce | ||
| CVE-2020-14779 | — | < 1.8.0_sr6.20-30.78.1 | 1.8.0_sr6.20-30.78.1 | Oct 21, 2020 | Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Serialization). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with net | ||
| CVE-2019-17639 | — | < 1.8.0_sr6.15-30.72.1 | 1.8.0_sr6.15-30.72.1 | Jul 15, 2020 | In Eclipse OpenJ9 prior to version 0.21 on Power platforms, calling the System.arraycopy method with a length longer than the length of the source or destination array can, in certain specially crafted code patterns, cause the current method to return prematurely with an undefine | ||
| CVE-2020-14621 | — | < 1.8.0_sr6.15-30.72.1 | 1.8.0_sr6.15-30.72.1 | Jul 15, 2020 | Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: JAXP). Supported versions that are affected are Java SE: 7u261, 8u251, 11.0.7 and 14.0.1; Java SE Embedded: 8u251. Easily exploitable vulnerability allows unauthenticated attacker with network ac | ||
| CVE-2020-14593 | — | < 1.8.0_sr6.15-30.72.1 | 1.8.0_sr6.15-30.72.1 | Jul 15, 2020 | Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: 2D). Supported versions that are affected are Java SE: 7u261, 8u251, 11.0.7 and 14.0.1; Java SE Embedded: 8u251. Easily exploitable vulnerability allows unauthenticated attacker with network acce | ||
| CVE-2020-14583 | — | < 1.8.0_sr6.15-30.72.1 | 1.8.0_sr6.15-30.72.1 | Jul 15, 2020 | Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u261, 8u251, 11.0.7 and 14.0.1; Java SE Embedded: 8u251. Difficult to exploit vulnerability allows unauthenticated attacker with net | ||
| CVE-2020-14581 | — | < 1.8.0_sr6.15-30.72.1 | 1.8.0_sr6.15-30.72.1 | Jul 15, 2020 | Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: 2D). Supported versions that are affected are Java SE: 8u251, 11.0.7 and 14.0.1; Java SE Embedded: 8u251. Difficult to exploit vulnerability allows unauthenticated attacker with network access vi | ||
| CVE-2020-14579 | — | < 1.8.0_sr6.15-30.72.1 | 1.8.0_sr6.15-30.72.1 | Jul 15, 2020 | Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u261 and 8u251; Java SE Embedded: 8u251. Difficult to exploit vulnerability allows unauthenticated attacker with network access via | ||
| CVE-2020-14578 | — | < 1.8.0_sr6.15-30.72.1 | 1.8.0_sr6.15-30.72.1 | Jul 15, 2020 | Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u261 and 8u251; Java SE Embedded: 8u251. Difficult to exploit vulnerability allows unauthenticated attacker with network access via | ||
| CVE-2020-14577 | — | < 1.8.0_sr6.15-30.72.1 | 1.8.0_sr6.15-30.72.1 | Jul 15, 2020 | Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: JSSE). Supported versions that are affected are Java SE: 7u261, 8u251, 11.0.7 and 14.0.1; Java SE Embedded: 8u251. Difficult to exploit vulnerability allows unauthenticated attacker with network | ||
| CVE-2020-14556 | — | < 1.8.0_sr6.15-30.72.1 | 1.8.0_sr6.15-30.72.1 | Jul 15, 2020 | Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 8u251, 11.0.7 and 14.0.1; Java SE Embedded: 8u251. Difficult to exploit vulnerability allows unauthenticated attacker with network ac | ||
| CVE-2020-2830 | — | < 1.8.0_sr6.10-30.69.1 | 1.8.0_sr6.10-30.69.1 | Apr 15, 2020 | Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Concurrency). Supported versions that are affected are Java SE: 7u251, 8u241, 11.0.6 and 14; Java SE Embedded: 8u241. Easily exploitable vulnerability allows unauthenticated attacker with network | ||
| CVE-2020-2805 | — | < 1.8.0_sr6.10-30.69.1 | 1.8.0_sr6.10-30.69.1 | Apr 15, 2020 | Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u251, 8u241, 11.0.6 and 14; Java SE Embedded: 8u241. Difficult to exploit vulnerability allows unauthenticated attacker with network | ||
| CVE-2020-2803 | — | < 1.8.0_sr6.10-30.69.1 | 1.8.0_sr6.10-30.69.1 | Apr 15, 2020 | Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u251, 8u241, 11.0.6 and 14; Java SE Embedded: 8u241. Difficult to exploit vulnerability allows unauthenticated attacker with network |
- CVE-2020-27221Jan 21, 2021affected < 1.8.0_sr6.25-30.81.1fixed 1.8.0_sr6.25-30.81.1
In Eclipse OpenJ9 up to and including version 0.23, there is potential for a stack-based buffer overflow when the virtual machine or JNI natives are converting from UTF-8 characters to platform encoding.
- CVE-2020-14803Oct 21, 2020affected < 1.8.0_sr6.20-30.78.1fixed 1.8.0_sr6.20-30.78.1
Vulnerability in the Java SE product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 11.0.8 and 15. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Succe
- CVE-2020-14798Oct 21, 2020affected < 1.8.0_sr6.20-30.78.1fixed 1.8.0_sr6.20-30.78.1
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network
- CVE-2020-14797Oct 21, 2020affected < 1.8.0_sr6.20-30.78.1fixed 1.8.0_sr6.20-30.78.1
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network
- CVE-2020-14796Oct 21, 2020affected < 1.8.0_sr6.20-30.78.1fixed 1.8.0_sr6.20-30.78.1
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network
- CVE-2020-14792Oct 21, 2020affected < 1.8.0_sr6.20-30.78.1fixed 1.8.0_sr6.20-30.78.1
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network a
- CVE-2020-14781Oct 21, 2020affected < 1.8.0_sr6.20-30.78.1fixed 1.8.0_sr6.20-30.78.1
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: JNDI). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network acce
- CVE-2020-14779Oct 21, 2020affected < 1.8.0_sr6.20-30.78.1fixed 1.8.0_sr6.20-30.78.1
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Serialization). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with net
- CVE-2019-17639Jul 15, 2020affected < 1.8.0_sr6.15-30.72.1fixed 1.8.0_sr6.15-30.72.1
In Eclipse OpenJ9 prior to version 0.21 on Power platforms, calling the System.arraycopy method with a length longer than the length of the source or destination array can, in certain specially crafted code patterns, cause the current method to return prematurely with an undefine
- CVE-2020-14621Jul 15, 2020affected < 1.8.0_sr6.15-30.72.1fixed 1.8.0_sr6.15-30.72.1
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: JAXP). Supported versions that are affected are Java SE: 7u261, 8u251, 11.0.7 and 14.0.1; Java SE Embedded: 8u251. Easily exploitable vulnerability allows unauthenticated attacker with network ac
- CVE-2020-14593Jul 15, 2020affected < 1.8.0_sr6.15-30.72.1fixed 1.8.0_sr6.15-30.72.1
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: 2D). Supported versions that are affected are Java SE: 7u261, 8u251, 11.0.7 and 14.0.1; Java SE Embedded: 8u251. Easily exploitable vulnerability allows unauthenticated attacker with network acce
- CVE-2020-14583Jul 15, 2020affected < 1.8.0_sr6.15-30.72.1fixed 1.8.0_sr6.15-30.72.1
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u261, 8u251, 11.0.7 and 14.0.1; Java SE Embedded: 8u251. Difficult to exploit vulnerability allows unauthenticated attacker with net
- CVE-2020-14581Jul 15, 2020affected < 1.8.0_sr6.15-30.72.1fixed 1.8.0_sr6.15-30.72.1
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: 2D). Supported versions that are affected are Java SE: 8u251, 11.0.7 and 14.0.1; Java SE Embedded: 8u251. Difficult to exploit vulnerability allows unauthenticated attacker with network access vi
- CVE-2020-14579Jul 15, 2020affected < 1.8.0_sr6.15-30.72.1fixed 1.8.0_sr6.15-30.72.1
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u261 and 8u251; Java SE Embedded: 8u251. Difficult to exploit vulnerability allows unauthenticated attacker with network access via
- CVE-2020-14578Jul 15, 2020affected < 1.8.0_sr6.15-30.72.1fixed 1.8.0_sr6.15-30.72.1
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u261 and 8u251; Java SE Embedded: 8u251. Difficult to exploit vulnerability allows unauthenticated attacker with network access via
- CVE-2020-14577Jul 15, 2020affected < 1.8.0_sr6.15-30.72.1fixed 1.8.0_sr6.15-30.72.1
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: JSSE). Supported versions that are affected are Java SE: 7u261, 8u251, 11.0.7 and 14.0.1; Java SE Embedded: 8u251. Difficult to exploit vulnerability allows unauthenticated attacker with network
- CVE-2020-14556Jul 15, 2020affected < 1.8.0_sr6.15-30.72.1fixed 1.8.0_sr6.15-30.72.1
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 8u251, 11.0.7 and 14.0.1; Java SE Embedded: 8u251. Difficult to exploit vulnerability allows unauthenticated attacker with network ac
- CVE-2020-2830Apr 15, 2020affected < 1.8.0_sr6.10-30.69.1fixed 1.8.0_sr6.10-30.69.1
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Concurrency). Supported versions that are affected are Java SE: 7u251, 8u241, 11.0.6 and 14; Java SE Embedded: 8u241. Easily exploitable vulnerability allows unauthenticated attacker with network
- CVE-2020-2805Apr 15, 2020affected < 1.8.0_sr6.10-30.69.1fixed 1.8.0_sr6.10-30.69.1
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u251, 8u241, 11.0.6 and 14; Java SE Embedded: 8u241. Difficult to exploit vulnerability allows unauthenticated attacker with network
- CVE-2020-2803Apr 15, 2020affected < 1.8.0_sr6.10-30.69.1fixed 1.8.0_sr6.10-30.69.1
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u251, 8u241, 11.0.6 and 14; Java SE Embedded: 8u241. Difficult to exploit vulnerability allows unauthenticated attacker with network
Page 1 of 5