rpm package
suse/java-1_8_0-openjdk&distro=SUSE Linux Enterprise Module for Legacy 15 SP1
pkg:rpm/suse/java-1_8_0-openjdk&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Legacy%2015%20SP1
Vulnerabilities (62)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2019-7317 | Med | 5.3 | < 1.8.0.222-3.24.2 | 1.8.0.222-3.24.2 | Feb 4, 2019 | png_image_free in png.c in libpng 1.6.x before 1.6.37 has a use-after-free because png_image_free_function is called under png_safe_execute. | |
| CVE-2018-3639 | Med | 5.5 | < 1.8.0.212-3.19.1 | 1.8.0.212-3.19.1 | May 22, 2018 | Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addresses of all prior memory writes are known may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis, aka |
- affected < 1.8.0.222-3.24.2fixed 1.8.0.222-3.24.2
png_image_free in png.c in libpng 1.6.x before 1.6.37 has a use-after-free because png_image_free_function is called under png_safe_execute.
- affected < 1.8.0.212-3.19.1fixed 1.8.0.212-3.19.1
Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addresses of all prior memory writes are known may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis, aka
Page 4 of 4