rpm package

suse/java-1_8_0-openjdk&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP1

pkg:rpm/suse/java-1_8_0-openjdk&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1

Vulnerabilities (184)

CVE	Sev	CVSS	Affected versions	Fixed in	Published	Description
CVE-2017-3231	Med	4.3	< 1.8.0.121-20.1	1.8.0.121-20.1	Jan 27, 2017	Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Networking). Supported versions that are affected are Java SE: 6u131, 7u121 and 8u112; Java SE Embedded: 8u111. Easily exploitable vulnerability allows unauthenticated attacker with network
CVE-2016-5552	Med	5.3	< 1.8.0.121-20.1	1.8.0.121-20.1	Jan 27, 2017	Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Networking). Supported versions that are affected are Java SE: 6u131, 7u121 and 8u112; Java SE Embedded: 8u111; JRockit: R28.3.12. Easily exploitable vulnerability allows unauthenti
CVE-2016-5549	Med	6.5	< 1.8.0.121-20.1	1.8.0.121-20.1	Jan 27, 2017	Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 7u121 and 8u112; Java SE Embedded: 8u111. Easily exploitable vulnerability allows unauthenticated attacker with network access v
CVE-2016-5548	Med	6.5	< 1.8.0.121-20.1	1.8.0.121-20.1	Jan 27, 2017	Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 6u131, 7u121 and 8u112; Java SE Embedded: 8u111. Easily exploitable vulnerability allows unauthenticated attacker with network a
CVE-2016-5547	Med	5.3	< 1.8.0.121-20.1	1.8.0.121-20.1	Jan 27, 2017	Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 7u121 and 8u112; Java SE Embedded: 8u111; JRockit: R28.3.12. Easily exploitable vulnerability allows unauthenticated at
CVE-2016-5546	Hig	7.5	< 1.8.0.121-20.1	1.8.0.121-20.1	Jan 27, 2017	Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 6u131, 7u121 and 8u112; Java SE Embedded: 8u111; JRockit: R28.3.12. Easily exploitable vulnerability allows unauthentic
CVE-2016-5597	Med	5.9	< 1.8.0.111-17.1	1.8.0.111-17.1	Oct 25, 2016	Unspecified vulnerability in Oracle Java SE 6u121, 7u111, 8u102; and Java SE Embedded 8u101 allows remote attackers to affect confidentiality via vectors related to Networking.
CVE-2016-5582	Cri	9.6	< 1.8.0.111-17.1	1.8.0.111-17.1	Oct 25, 2016	Unspecified vulnerability in Oracle Java SE 6u121, 7u111, 8u102; and Java SE Embedded 8u101 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Hotspot, a different vulnerability than CVE-2016-5573.
CVE-2016-5573	Hig	8.3	< 1.8.0.111-17.1	1.8.0.111-17.1	Oct 25, 2016	Unspecified vulnerability in Oracle Java SE 6u121, 7u111, 8u102; and Java SE Embedded 8u101 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Hotspot, a different vulnerability than CVE-2016-5582.
CVE-2016-5568	Cri	9.6	< 1.8.0.111-17.1	1.8.0.111-17.1	Oct 25, 2016	Unspecified vulnerability in Oracle Java SE 6u121, 7u111, and 8u102 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT.
CVE-2016-5556	Cri	9.6	< 1.8.0.111-17.1	1.8.0.111-17.1	Oct 25, 2016	Unspecified vulnerability in Oracle Java SE 6u121, 7u111, and 8u102 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to 2D.
CVE-2016-5554	Med	4.3	< 1.8.0.111-17.1	1.8.0.111-17.1	Oct 25, 2016	Unspecified vulnerability in Oracle Java SE 6u121, 7u111, 8u102; and Java SE Embedded 8u101 allows remote attackers to affect integrity via vectors related to JMX.
CVE-2016-5542	Low	3.1	< 1.8.0.111-17.1	1.8.0.111-17.1	Oct 25, 2016	Unspecified vulnerability in Oracle Java SE 6u121, 7u111, 8u102; and Java SE Embedded 8u101 allows remote attackers to affect integrity via vectors related to Libraries.
CVE-2016-2183	Hig	7.5	< 1.8.0.121-20.1	1.8.0.121-20.1	Sep 1, 2016	The DES and Triple DES ciphers, as used in the TLS, SSH, and IPSec protocols and other protocols and products, have a birthday bound of approximately four billion blocks, which makes it easier for remote attackers to obtain cleartext data via a birthday attack against a long-dura
CVE-2016-3610	Cri	9.6	< 1.8.0.101-14.3	1.8.0.101-14.3	Jul 21, 2016	Unspecified vulnerability in Oracle Java SE 8u92 and Java SE Embedded 8u91 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Libraries, a different vulnerability than CVE-2016-3598.
CVE-2016-3606	Cri	9.6	< 1.8.0.101-14.3	1.8.0.101-14.3	Jul 21, 2016	Unspecified vulnerability in Oracle Java SE 7u101 and 8u92 and Java SE Embedded 8u91 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Hotspot.
CVE-2016-3598	Cri	9.6	< 1.8.0.101-14.3	1.8.0.101-14.3	Jul 21, 2016	Unspecified vulnerability in Oracle Java SE 8u92 and Java SE Embedded 8u91 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Libraries, a different vulnerability than CVE-2016-3610.
CVE-2016-3587	Cri	9.6	< 1.8.0.101-14.3	1.8.0.101-14.3	Jul 21, 2016	Unspecified vulnerability in Oracle Java SE 8u92 and Java SE Embedded 8u91 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Hotspot.
CVE-2016-3552	Hig	8.1	< 1.8.0.101-14.3	1.8.0.101-14.3	Jul 21, 2016	Unspecified vulnerability in Oracle Java SE 8u92 allows local users to affect confidentiality, integrity, and availability via vectors related to Install.
CVE-2016-3550	Med	4.3	< 1.8.0.101-14.3	1.8.0.101-14.3	Jul 21, 2016	Unspecified vulnerability in Oracle Java SE 6u115, 7u101, and 8u92 and Java SE Embedded 8u91 allows remote attackers to affect confidentiality via vectors related to Hotspot.

CVE-2017-3231MedJan 27, 2017
affected < 1.8.0.121-20.1fixed 1.8.0.121-20.1
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Networking). Supported versions that are affected are Java SE: 6u131, 7u121 and 8u112; Java SE Embedded: 8u111. Easily exploitable vulnerability allows unauthenticated attacker with network
CVE-2016-5552MedJan 27, 2017
affected < 1.8.0.121-20.1fixed 1.8.0.121-20.1
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Networking). Supported versions that are affected are Java SE: 6u131, 7u121 and 8u112; Java SE Embedded: 8u111; JRockit: R28.3.12. Easily exploitable vulnerability allows unauthenti
CVE-2016-5549MedJan 27, 2017
affected < 1.8.0.121-20.1fixed 1.8.0.121-20.1
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 7u121 and 8u112; Java SE Embedded: 8u111. Easily exploitable vulnerability allows unauthenticated attacker with network access v
CVE-2016-5548MedJan 27, 2017
affected < 1.8.0.121-20.1fixed 1.8.0.121-20.1
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 6u131, 7u121 and 8u112; Java SE Embedded: 8u111. Easily exploitable vulnerability allows unauthenticated attacker with network a
CVE-2016-5547MedJan 27, 2017
affected < 1.8.0.121-20.1fixed 1.8.0.121-20.1
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 7u121 and 8u112; Java SE Embedded: 8u111; JRockit: R28.3.12. Easily exploitable vulnerability allows unauthenticated at
CVE-2016-5546HigJan 27, 2017
affected < 1.8.0.121-20.1fixed 1.8.0.121-20.1
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 6u131, 7u121 and 8u112; Java SE Embedded: 8u111; JRockit: R28.3.12. Easily exploitable vulnerability allows unauthentic
CVE-2016-5597MedOct 25, 2016
affected < 1.8.0.111-17.1fixed 1.8.0.111-17.1
Unspecified vulnerability in Oracle Java SE 6u121, 7u111, 8u102; and Java SE Embedded 8u101 allows remote attackers to affect confidentiality via vectors related to Networking.
CVE-2016-5582CriOct 25, 2016
affected < 1.8.0.111-17.1fixed 1.8.0.111-17.1
Unspecified vulnerability in Oracle Java SE 6u121, 7u111, 8u102; and Java SE Embedded 8u101 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Hotspot, a different vulnerability than CVE-2016-5573.
CVE-2016-5573HigOct 25, 2016
affected < 1.8.0.111-17.1fixed 1.8.0.111-17.1
Unspecified vulnerability in Oracle Java SE 6u121, 7u111, 8u102; and Java SE Embedded 8u101 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Hotspot, a different vulnerability than CVE-2016-5582.
CVE-2016-5568CriOct 25, 2016
affected < 1.8.0.111-17.1fixed 1.8.0.111-17.1
Unspecified vulnerability in Oracle Java SE 6u121, 7u111, and 8u102 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT.
CVE-2016-5556CriOct 25, 2016
affected < 1.8.0.111-17.1fixed 1.8.0.111-17.1
Unspecified vulnerability in Oracle Java SE 6u121, 7u111, and 8u102 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to 2D.
CVE-2016-5554MedOct 25, 2016
affected < 1.8.0.111-17.1fixed 1.8.0.111-17.1
Unspecified vulnerability in Oracle Java SE 6u121, 7u111, 8u102; and Java SE Embedded 8u101 allows remote attackers to affect integrity via vectors related to JMX.
CVE-2016-5542LowOct 25, 2016
affected < 1.8.0.111-17.1fixed 1.8.0.111-17.1
Unspecified vulnerability in Oracle Java SE 6u121, 7u111, 8u102; and Java SE Embedded 8u101 allows remote attackers to affect integrity via vectors related to Libraries.
CVE-2016-2183HigSep 1, 2016
affected < 1.8.0.121-20.1fixed 1.8.0.121-20.1
The DES and Triple DES ciphers, as used in the TLS, SSH, and IPSec protocols and other protocols and products, have a birthday bound of approximately four billion blocks, which makes it easier for remote attackers to obtain cleartext data via a birthday attack against a long-dura
CVE-2016-3610CriJul 21, 2016
affected < 1.8.0.101-14.3fixed 1.8.0.101-14.3
Unspecified vulnerability in Oracle Java SE 8u92 and Java SE Embedded 8u91 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Libraries, a different vulnerability than CVE-2016-3598.
CVE-2016-3606CriJul 21, 2016
affected < 1.8.0.101-14.3fixed 1.8.0.101-14.3
Unspecified vulnerability in Oracle Java SE 7u101 and 8u92 and Java SE Embedded 8u91 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Hotspot.
CVE-2016-3598CriJul 21, 2016
affected < 1.8.0.101-14.3fixed 1.8.0.101-14.3
Unspecified vulnerability in Oracle Java SE 8u92 and Java SE Embedded 8u91 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Libraries, a different vulnerability than CVE-2016-3610.
CVE-2016-3587CriJul 21, 2016
affected < 1.8.0.101-14.3fixed 1.8.0.101-14.3
Unspecified vulnerability in Oracle Java SE 8u92 and Java SE Embedded 8u91 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Hotspot.
CVE-2016-3552HigJul 21, 2016
affected < 1.8.0.101-14.3fixed 1.8.0.101-14.3
Unspecified vulnerability in Oracle Java SE 8u92 allows local users to affect confidentiality, integrity, and availability via vectors related to Install.
CVE-2016-3550MedJul 21, 2016
affected < 1.8.0.101-14.3fixed 1.8.0.101-14.3
Unspecified vulnerability in Oracle Java SE 6u115, 7u101, and 8u92 and Java SE Embedded 8u91 allows remote attackers to affect confidentiality via vectors related to Hotspot.

Page 8 of 10