Download
| Alert*
|
oval:org.secpod.oval:def:603149
Several vulnerabilities have been discovered in OpenJDK, an implementation of the Oracle Java platform, resulting in impersonation of Kerberos services, denial of service, sandbox bypass or HTTP header injection. oval:org.secpod.oval:def:1600820 It was discovered that the Security component of OpenJDK could fail to properly enforce restrictions defined for processing of X.509 certificate chains. A remote attacker could possibly use this flaw to make Java accept certificate using one of the disabled algorithms. Vulnerability in the Java SE, ... oval:org.secpod.oval:def:1502041 Several security issues were fixed in java-1.8.0-openjdk. oval:org.secpod.oval:def:204576 The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Security Fix: * Multiple flaws were discovered in the RMI and Hotspot components in OpenJDK. An untrusted Java application or applet could use these flaws to completely byp ... oval:org.secpod.oval:def:1502086 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:1502040 Several security issues were fixed in Java. oval:org.secpod.oval:def:204578 The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Security Fix: * Multiple flaws were discovered in the RMI and Hotspot components in OpenJDK. An untrusted Java application or applet could use these flaws to completely byp ... oval:org.secpod.oval:def:51931 openjdk-8: Open Source Java implementation Several security issues were fixed in OpenJDK 8. oval:org.secpod.oval:def:52903 openjdk-7: Open Source Java implementation Several security issues were fixed in OpenJDK 7. oval:org.secpod.oval:def:603185 Several vulnerabilities have been discovered in OpenJDK, an implementation of the Oracle Java platform, resulting in impersonation of Kerberos services, denial of service, sandbox bypass or HTTP header injection. oval:org.secpod.oval:def:204719 The java-1.7.0-openjdk packages provide the OpenJDK 7 Java Runtime Environment and the OpenJDK 7 Java Software Development Kit. Security Fix: * Multiple flaws were discovered in the RMI and Hotspot components in OpenJDK. An untrusted Java application or applet could use these flaws to completely byp ... oval:org.secpod.oval:def:204718 The java-1.7.0-openjdk packages provide the OpenJDK 7 Java Runtime Environment and the OpenJDK 7 Java Software Development Kit. Security Fix: * Multiple flaws were discovered in the RMI and Hotspot components in OpenJDK. An untrusted Java application or applet could use these flaws to completely byp ... oval:org.secpod.oval:def:703911 openjdk-7: Open Source Java implementation Several security issues were fixed in OpenJDK 7. oval:org.secpod.oval:def:703882 openjdk-8: Open Source Java implementation Several security issues were fixed in OpenJDK 8. oval:org.secpod.oval:def:502185 The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Security Fix: * Multiple flaws were discovered in the RMI and Hotspot components in OpenJDK. An untrusted Java application or applet could use these flaws to completely byp ... oval:org.secpod.oval:def:1600795 Multiple unbounded memory allocations in deserialization Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE . Supported versions that are affected are Java SE: 6u161, 7u151, 8u144 and 9; Java SE Embedded: 8u144; JRockit: R28.3.15. Easily exploitable vulnerability all ... oval:org.secpod.oval:def:53168 Several vulnerabilities have been discovered in OpenJDK, an implementation of the Oracle Java platform, resulting in impersonation of Kerberos services, denial of service, sandbox bypass or HTTP header injection. oval:org.secpod.oval:def:1502076 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:502207 The java-1.7.0-openjdk packages provide the OpenJDK 7 Java Runtime Environment and the OpenJDK 7 Java Software Development Kit. Security Fix: * Multiple flaws were discovered in the RMI and Hotspot components in OpenJDK. An untrusted Java application or applet could use these flaws to completely byp ... oval:org.secpod.oval:def:89044791 This update for java-1_8_0-openjdk fixes the following issues: - Update to version jdk8u151 Security issues fixed: - CVE-2017-10274: Handle smartcard clean up better - CVE-2017-10281: Better queuing priorities - CVE-2017-10285: Unreferenced references - CVE-2017-10295: Better URL connections - ... oval:org.secpod.oval:def:1000634 The remote host is missing a patch 152079-71 containing a security fix. For more information please visit the reference link. oval:org.secpod.oval:def:1000659 The remote host is missing a patch 152098-61 containing a security fix. For more information please visit the reference link. oval:org.secpod.oval:def:1000693 The remote host is missing a patch 152077-71 containing a security fix. For more information please visit the reference link. oval:org.secpod.oval:def:1000674 The remote host is missing a patch 152097-61 containing a security fix. For more information please visit the reference link. oval:org.secpod.oval:def:1000794 The remote host is missing a patch 152076-71 containing a security fix. For more information please visit the reference link. oval:org.secpod.oval:def:1000727 The remote host is missing a patch 152078-71 containing a security fix. For more information please visit the reference link. oval:org.secpod.oval:def:2102700 The Type_MLU_Read function in cmstypes.c in Little CMS (aka lcms2) allows remote attackers to obtain sensitive information or cause a denial of service via an image with a crafted ICC profile, which triggers an out-of-bounds heap read. oval:org.secpod.oval:def:1000763 The remote host is missing a patch 152096-61 containing a security fix. For more information please visit the reference link. oval:org.secpod.oval:def:1000803 The remote host is missing a patch 152099-61 containing a security fix. For more information please visit the reference link. oval:org.secpod.oval:def:42458 The host is installed with Oracle Java SE through 6u161, 7u151, 8u144 or 9 and is prone to an unspecified vulnerability. A flaw is present in the application, which fails to handle vectors related to Smart Card IO. Successful exploitation allows attackers to affect Confidentiality and Integrity. |
