VYPR

rpm package

suse/java-1_8_0-ibm&distro=SUSE Linux Enterprise Software Development Kit 12 SP1

pkg:rpm/suse/java-1_8_0-ibm&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP1

Vulnerabilities (72)

  • CVE-2016-9843CriMay 23, 2017
    affected < 1.8.0_sr4.5-29.1fixed 1.8.0_sr4.5-29.1

    The crc32_big function in crc32.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact via vectors involving big-endian CRC calculation.

  • CVE-2016-9842HigMay 23, 2017
    affected < 1.8.0_sr4.5-29.1fixed 1.8.0_sr4.5-29.1

    The inflateMark function in inflate.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact via vectors involving left shifts of negative integers.

  • CVE-2016-9841CriMay 23, 2017
    affected < 1.8.0_sr4.5-29.1fixed 1.8.0_sr4.5-29.1

    inffast.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by leveraging improper pointer arithmetic.

  • CVE-2016-9840HigMay 23, 2017
    affected < 1.8.0_sr4.5-29.1fixed 1.8.0_sr4.5-29.1

    inftrees.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by leveraging improper pointer arithmetic.

  • CVE-2017-1289HigMay 22, 2017
    affected < 1.8.0_sr4.5-29.1fixed 1.8.0_sr4.5-29.1

    IBM SDK, Java Technology Edition is vulnerable XML External Entity Injection (XXE) error when processing XML data. A remote attacker could exploit this vulnerability to expose highly sensitive information or consume memory resources. IBM X-Force ID: 125150.

  • CVE-2017-3544LowApr 24, 2017
    affected < 1.8.0_sr4.5-29.1fixed 1.8.0_sr4.5-29.1

    Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Networking). Supported versions that are affected are Java SE: 6u141, 7u131 and 8u121; Java SE Embedded: 8u121; JRockit: R28.3.13. Difficult to exploit vulnerability allows unauthen

  • CVE-2017-3539LowApr 24, 2017
    affected < 1.8.0_sr4.5-29.1fixed 1.8.0_sr4.5-29.1

    Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Security). Supported versions that are affected are Java SE: 6u141, 7u131 and 8u121; Java SE Embedded: 8u121. Difficult to exploit vulnerability allows unauthenticated attacker with network

  • CVE-2017-3533LowApr 24, 2017
    affected < 1.8.0_sr4.5-29.1fixed 1.8.0_sr4.5-29.1

    Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Networking). Supported versions that are affected are Java SE: 6u141, 7u131 and 8u121; Java SE Embedded: 8u121; JRockit: R28.3.13. Difficult to exploit vulnerability allows unauthen

  • CVE-2017-3511HigApr 24, 2017
    affected < 1.8.0_sr4.5-29.1fixed 1.8.0_sr4.5-29.1

    Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JCE). Supported versions that are affected are Java SE: 7u131 and 8u121; Java SE Embedded: 8u121; JRockit: R28.3.13. Difficult to exploit vulnerability allows unauthenticated attack

  • CVE-2017-3509MedApr 24, 2017
    affected < 1.8.0_sr4.5-29.1fixed 1.8.0_sr4.5-29.1

    Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Networking). Supported versions that are affected are Java SE: 6u141, 7u131 and 8u121; Java SE Embedded: 8u121. Difficult to exploit vulnerability allows unauthenticated attacker with networ

  • CVE-2017-3289CriJan 27, 2017
    affected < 1.8.0_sr4.0-23.1fixed 1.8.0_sr4.0-23.1

    Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Hotspot). Supported versions that are affected are Java SE: 7u121 and 8u112; Java SE Embedded: 8u111. Easily exploitable vulnerability allows unauthenticated attacker with network access via

  • CVE-2017-3272CriJan 27, 2017
    affected < 1.8.0_sr4.0-23.1fixed 1.8.0_sr4.0-23.1

    Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 6u131, 7u121 and 8u112; Java SE Embedded: 8u111. Easily exploitable vulnerability allows unauthenticated attacker with network a

  • CVE-2017-3261MedJan 27, 2017
    affected < 1.8.0_sr4.0-23.1fixed 1.8.0_sr4.0-23.1

    Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Networking). Supported versions that are affected are Java SE: 6u131, 7u121 and 8u112; Java SE Embedded: 8u111. Easily exploitable vulnerability allows unauthenticated attacker with network

  • CVE-2017-3259LowJan 27, 2017
    affected < 1.8.0_sr4.0-23.1fixed 1.8.0_sr4.0-23.1

    Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). Supported versions that are affected are Java SE: 6u131, 7u121 and 8u112. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromi

  • CVE-2017-3253HigJan 27, 2017
    affected < 1.8.0_sr4.0-23.1fixed 1.8.0_sr4.0-23.1

    Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: 2D). Supported versions that are affected are Java SE: 6u131, 7u121 and 8u112; Java SE Embedded: 8u111; JRockit: R28.3.12. Easily exploitable vulnerability allows unauthenticated at

  • CVE-2017-3252MedJan 27, 2017
    affected < 1.8.0_sr4.0-23.1fixed 1.8.0_sr4.0-23.1

    Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JAAS). Supported versions that are affected are Java SE: 6u131, 7u121 and 8u112; Java SE Embedded: 8u111; JRockit: R28.3.12. Difficult to exploit vulnerability allows low privileged

  • CVE-2017-3241CriJan 27, 2017
    affected < 1.8.0_sr4.0-23.1fixed 1.8.0_sr4.0-23.1

    Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: RMI). Supported versions that are affected are Java SE: 6u131, 7u121 and 8u112; Java SE Embedded: 8u111; JRockit: R28.3.12. Difficult to exploit vulnerability allows unauthenticated

  • CVE-2017-3231MedJan 27, 2017
    affected < 1.8.0_sr4.0-23.1fixed 1.8.0_sr4.0-23.1

    Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Networking). Supported versions that are affected are Java SE: 6u131, 7u121 and 8u112; Java SE Embedded: 8u111. Easily exploitable vulnerability allows unauthenticated attacker with network

  • CVE-2016-5552MedJan 27, 2017
    affected < 1.8.0_sr4.0-23.1fixed 1.8.0_sr4.0-23.1

    Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Networking). Supported versions that are affected are Java SE: 6u131, 7u121 and 8u112; Java SE Embedded: 8u111; JRockit: R28.3.12. Easily exploitable vulnerability allows unauthenti

  • CVE-2016-5549MedJan 27, 2017
    affected < 1.8.0_sr4.0-23.1fixed 1.8.0_sr4.0-23.1

    Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 7u121 and 8u112; Java SE Embedded: 8u111. Easily exploitable vulnerability allows unauthenticated attacker with network access v

Page 1 of 4