Download
| Alert*
|
oval:org.secpod.oval:def:602768
Several vulnerabilities have been discovered in OpenJDK, an implementation of the Oracle Java platform, resulting in the bypass of Java sandbox restrictions, denial of service, arbitrary code execution, incorrect parsing or URLs/LDAP DNs or cryptoraphice timing side channel attacks. oval:org.secpod.oval:def:38752 The host is installed with Oracle Java SE through 7u121 or 8u112 and is prone to an unspecified vulnerability. A flaw is present in the applications, which fail to handle vectors related to AWT. Successful exploitation allows attackers to affect Confidentiality, Integrity and Availability. oval:org.secpod.oval:def:89044800 This update for java-1_8_0-openjdk fixes the following issues: Oracle Critical Patch Update of January 2017 Upgrade to version jdk8u121 : - S8138725: Add options for Javadoc generation - S8140353: Improve signature checking - S8151934, CVE-2017-3231: Resolve class resolution - S8156804, CVE-2017-32 ... oval:org.secpod.oval:def:1000656 The remote host is missing a patch 152100-21 containing a security fix. For more information please visit the reference link. oval:org.secpod.oval:def:1000658 The remote host is missing a patch 152101-21 containing a security fix. For more information please visit the reference link. oval:org.secpod.oval:def:89044859 - S8021108: Clean up doclint warnings and errors in java.text package - S8021417: Fix doclint issues in java.util.concurrent - S8021833: javadoc cleanup in java.net - S8022120: JCK test api/javax_xml/crypto/dsig/TransformService/index_ParamMethods fails - S8022175: Fix doclint warnings in javax.prin ... |
