Download
| Alert*
|
oval:org.secpod.oval:def:4500030
The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the Reference ... oval:org.secpod.oval:def:506272 The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Security Fix: * OpenJDK: Incorrect comparison during range check elimination * OpenJDK: FTP PASV command response can cause FtpClient to connect to arbitrary host * Ope ... oval:org.secpod.oval:def:74237 The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Security Fix: * OpenJDK: Incorrect comparison during range check elimination * OpenJDK: FTP PASV command response can cause FtpClient to connect to arbitrary host * Ope ... oval:org.secpod.oval:def:120508 The OpenJDK 8 runtime environment. oval:org.secpod.oval:def:74238 The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit. Security Fix: * OpenJDK: Incorrect comparison during range check elimination * OpenJDK: FTP PASV command response can cause FtpClient to connect to arbitrary host * Open ... oval:org.secpod.oval:def:78640 The host is missing a patch containing a security fixes, which affects the following package(s): Java oval:org.secpod.oval:def:89045938 This update for java-1_8_0-ibm fixes the following issues: - Update to Java 8.0 Service Refresh 7 Fix Pack 0 - CVE-2021-41035: before version 0.29.0, the openj9 JVM does not throw IllegalAccessError for MethodHandles that invoke inaccessible interface methods. - CVE-2021-35586: Excessive memory all ... oval:org.secpod.oval:def:89045937 This update for java-1_8_0-ibm fixes the following issues: - Update to Java 8.0 Service Refresh 7 Fix Pack 0 - CVE-2021-41035: before version 0.29.0, the openj9 JVM does not throw IllegalAccessError for MethodHandles that invoke inaccessible interface methods. - CVE-2021-35586: Excessive memory all ... oval:org.secpod.oval:def:1505034 [1:11.0.12.0.7-0.0.1] - link atomic for ix86 build [1:11.0.12.0.7-0] - Update to jdk-11.0.12.0+7 - Update release notes to 11.0.12.0+7 - Switch to GA mode for final release. - This tarball is embargoed until 2021-07-20 @ 1pm PT. - Resolves: rhbz#1972395 [1:11.0.12.0.6-0.0.ea] - Update to jdk-11.0.12 ... oval:org.secpod.oval:def:1505032 [1:11.0.12.0.7-0] - Update to jdk-11.0.12.0+7 - Update release notes to 11.0.12.0+7 - Switch to GA mode for final release. - This tarball is embargoed until 2021-07-20 @ 1pm PT. - Resolves: rhbz#1972395 [1:11.0.12.0.6-0.0.ea] - Update to jdk-11.0.12.0+6 - Update release notes to 11.0.12.0+6 - Switch ... oval:org.secpod.oval:def:120532 The OpenJDK 11 runtime environment. oval:org.secpod.oval:def:89045922 This update for java-1_7_1-ibm fixes the following issues: - Update to Java 7.1 Service Refresh 5 Fix Pack 0 - CVE-2021-41035: before version 0.29.0, the openj9 JVM does not throw IllegalAccessError for MethodHandles that invoke inaccessible interface methods. - CVE-2021-35586: Excessive memory all ... oval:org.secpod.oval:def:89045548 This update for java-1_8_0-openjdk fixes the following issues: - Update to version jdk8u302 - CVE-2021-2341: Improve file transfers. - CVE-2021-2369: Better jar file validation. - CVE-2021-2388: Enhance compiler validation. - CVE-2021-2161: Less ambiguous processing oval:org.secpod.oval:def:205883 The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Security Fix: * OpenJDK: Incorrect comparison during range check elimination * OpenJDK: FTP PASV command response can cause FtpClient to connect to arbitrary host * Ope ... oval:org.secpod.oval:def:506419 IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE 8 to version 8 SR6-FP35. Security Fix: * OpenJDK: FTP PASV command response can cause FtpClient to connect to arbitrary host * OpenJDK: Incorrect verification ... oval:org.secpod.oval:def:4500007 The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit. For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References ... oval:org.secpod.oval:def:120514 The OpenJDK 8 runtime environment. oval:org.secpod.oval:def:89045940 This update for java-1_7_1-ibm fixes the following issues: - Update to Java 7.1 Service Refresh 5 Fix Pack 0 - CVE-2021-41035: before version 0.29.0, the openj9 JVM does not throw IllegalAccessError for MethodHandles that invoke inaccessible interface methods. - CVE-2021-35586: Excessive memory all ... oval:org.secpod.oval:def:89047245 This update for java-11-openjdk fixes the following issues: - Update to jdk-11.0.12+7 - CVE-2021-2369: Fixed JAR file handling problem containing multiple MANIFEST.MF files. - CVE-2021-2388: Fixed a flaw inside the Hotspot component performed range check elimination. - CVE-2021-2341: Fixed a flaw ... oval:org.secpod.oval:def:605586 Several vulnerabilities have been discovered in the OpenJDK Java runtime, resulting in bypass of sandbox restrictions, incorrect validation of signed Jars or information disclosure. oval:org.secpod.oval:def:89045486 This update for java-11-openjdk fixes the following issues: - Update to jdk-11.0.12+7 - CVE-2021-2369: Fixed JAR file handling problem containing multiple MANIFEST.MF files. - CVE-2021-2388: Fixed a flaw inside the Hotspot component performed range check elimination. - CVE-2021-2341: Fixed a flaw ... oval:org.secpod.oval:def:2500411 The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit. oval:org.secpod.oval:def:1700693 Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE . Supported versions that are affected are Java SE: 7u301, 8u291, 11.0.11, 16.0.1; Oracle GraalVM Enterprise Edition: 20.3.2 and 21.1.0. Difficult to exploit vulnerability allows unauthenticated attacker with n ... oval:org.secpod.oval:def:706259 openjdk-8: Open Source Java implementation - openjdk-lts: Open Source Java implementation Several security issues were fixed in OpenJDK. oval:org.secpod.oval:def:120517 The OpenJDK 11 runtime environment. oval:org.secpod.oval:def:1601469 Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE . Supported versions that are affected are Java SE: 7u301, 8u291, 11.0.11, 16.0.1; Oracle GraalVM Enterprise Edition: 20.3.2 and 21.1.0. Difficult to exploit vulnerability allows unauthenticated attacker with n ... oval:org.secpod.oval:def:74568 Several vulnerabilities have been discovered in the OpenJDK Java runtime, resulting in bypass of sandbox restrictions, incorrect validation of signed Jars or information disclosure. oval:org.secpod.oval:def:77019 openjdk-8: Open Source Java implementation - openjdk-lts: Open Source Java implementation Several security issues were fixed in OpenJDK. oval:org.secpod.oval:def:506267 The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit. Security Fix: * OpenJDK: Incorrect comparison during range check elimination * OpenJDK: FTP PASV command response can cause FtpClient to connect to arbitrary host * Open ... oval:org.secpod.oval:def:74047 The host is installed with Oracle Java SE 7.x through 7u301, 8.x through 8u291, 11.x through 11.0.11 or 16.x through 16.0.2 and is prone to an unspecified vulnerability. A flaw is present in the application, which fails to handle vectors related to Library. Successful exploitation allows attackers t ... oval:org.secpod.oval:def:89045607 This update for java-11-openjdk fixes the following issues: - Update to jdk-11.0.12+7 - CVE-2021-2369: Fixed JAR file handling problem containing multiple MANIFEST.MF files. - CVE-2021-2388: Fixed a flaw inside the Hotspot component performed range check elimination. - CVE-2021-2341: Fixed a flaw ... oval:org.secpod.oval:def:506327 IBM Java SE version 7 Release 1 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE 7 to version 7R1 SR4-FP90. Security Fix: * OpenJDK: FTP PASV command response can cause FtpClient to connect to arbitrary host * OpenJDK: Incorrect ... oval:org.secpod.oval:def:506249 The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Security Fix: * OpenJDK: Incorrect comparison during range check elimination * OpenJDK: FTP PASV command response can cause FtpClient to connect to arbitrary host * Ope ... oval:org.secpod.oval:def:506326 IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE 8 to version 8 SR6-FP35. Security Fix: * OpenJDK: FTP PASV command response can cause FtpClient to connect to arbitrary host * OpenJDK: Incorrect verification ... oval:org.secpod.oval:def:74075 The host is installed with Oracle Java SE 7.x through 7u301, 8.x through 8u291, 11.x through 11.0.11 or 16.x through 16.0.1 and is prone to an unspecified vulnerability. A flaw is present in the application, which fails to handle vectors related to Library. Successful exploitation allows attackers t ... oval:org.secpod.oval:def:506248 The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit. Security Fix: * OpenJDK: Incorrect comparison during range check elimination * OpenJDK: FTP PASV command response can cause FtpClient to connect to arbitrary host * Open ... oval:org.secpod.oval:def:1505027 [1:1.8.0.302.b08-0] - Update to aarch64-shenandoah-jdk8u302-b08 - Update release notes for 8u302-b08. - Switch to GA mode for final release. - This tarball is embargoed until 2021-07-20 @ 1pm PT. - Resolves: rhbz#1972395 [1:1.8.0.302.b07-0.0.ea] - Update to aarch64-shenandoah-jdk8u302-b07 - Update ... oval:org.secpod.oval:def:74074 The host is installed with Oracle Java SE 7.x through 7u301, 8.x through 8u291, 11.x through 11.0.11 or 16.x through 16.0.1 and is prone to an unspecified vulnerability. A flaw is present in the application, which fails to handle vectors related to Library. Successful exploitation allows attackers t ... oval:org.secpod.oval:def:1505028 [1:1.8.0.302.b08-0] - Update to aarch64-shenandoah-jdk8u302-b08 - Update release notes for 8u302-b08. - Switch to GA mode for final release. - This tarball is embargoed until 2021-07-20 @ 1pm PT. - Resolves: rhbz#1972395 [1:1.8.0.302.b07-0.0.ea] - Update to aarch64-shenandoah-jdk8u302-b07 - Update ... oval:org.secpod.oval:def:89045551 This update for java-1_8_0-openjdk fixes the following issues: - Update to version jdk8u302 - CVE-2021-2341: Improve file transfers. - CVE-2021-2369: Better jar file validation. - CVE-2021-2388: Enhance compiler validation. - CVE-2021-2161: Less ambiguous processing oval:org.secpod.oval:def:2500289 The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. oval:org.secpod.oval:def:205879 The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit. Security Fix: * OpenJDK: Incorrect comparison during range check elimination * OpenJDK: FTP PASV command response can cause FtpClient to connect to arbitrary host * Open ... oval:org.secpod.oval:def:1700682 Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE . Supported versions that are affected are Java SE: 7u301, 8u291, 11.0.11, 16.0.1; Oracle GraalVM Enterprise Edition: 20.3.2 and 21.1.0. Difficult to exploit vulnerability allows unauthenticated attacker with n ... oval:org.secpod.oval:def:97673 [CLSA-2022:1661176564] Fixed 50 CVEs in java-1.7.0-openjdk oval:org.secpod.oval:def:74082 The host is installed with Oracle Java SE 7.x through 7u301, 8.x through 8u291, 11.x through 11.0.11 or 16.x through 16.0.1, or Azul Zulu 6 before 6.41, 7 before 7.47, 8 before 8.55, 11 before 11.49, 13 before 13.41, or 15 before 15.33 and is prone to an unspecified vulnerability. A flaw is present ... oval:org.secpod.oval:def:89045637 This update for java-1_7_0-openjdk fixes the following issues: - Update to 2.6.27 - OpenJDK 7u311 Security fixes: - CVE-2021-2341: Improve file transfers - CVE-2021-2369: Better jar file validation - CVE-2021-2432: Provide better LDAP provider support - CVE-2021-2163: Enhance opening JARs - CVE ... |
