Critical input validation flaw in java-1.7.0-openjdk medialib library allowing remote code execution. Multiple permission check and memory corruption flaws present. DNS spoofing vulnerabilities in JNDI DNS client. Insecure temporary file use issue in unpack200 utility leading to symbolic link attacks. JAXP component access to arbitrary files with SecurityManager present leading to sensitive information leak. OpenJDK Security component timing information leak during PKCS#1 unpadding. Javadoc input sanitization flaws leading to cross-site scripting (XSS) attacks
Reporter | Title | Published | Views | Family All 199 |
---|---|---|---|---|
Veracode | Denial Of Service (DoS) | 2 May 201905:02 | – | veracode |
Veracode | Information Disclosure | 2 May 201905:02 | – | veracode |
Veracode | Information Disclosure | 2 May 201905:02 | – | veracode |
Veracode | Information Disclosure | 2 May 201905:02 | – | veracode |
Veracode | Privilege Escalation | 2 May 201905:02 | – | veracode |
Veracode | Information Disclosure | 2 May 201905:02 | – | veracode |
Veracode | Information Disclosure | 2 May 201905:02 | – | veracode |
Veracode | Information Disclosure | 2 May 201905:02 | – | veracode |
Veracode | Privilege Escalation | 2 May 201904:58 | – | veracode |
Veracode | Privilege Escalation | 2 May 201904:58 | – | veracode |
Source | Link |
---|---|
rhn | www.rhn.redhat.com/errata/RHSA-2014-0406.html |
OS | OS Version | Architecture | Package | Package Version | Filename |
---|---|---|---|---|---|
Amazon Linux | 1 | i686 | java-1.7.0-openjdk-demo | 1.7.0.55-2.4.7.1.40.amzn1 | java-1.7.0-openjdk-demo-1.7.0.55-2.4.7.1.40.amzn1.i686.rpm |
Amazon Linux | 1 | i686 | java-1.7.0-openjdk-src | 1.7.0.55-2.4.7.1.40.amzn1 | java-1.7.0-openjdk-src-1.7.0.55-2.4.7.1.40.amzn1.i686.rpm |
Amazon Linux | 1 | i686 | java-1.7.0-openjdk | 1.7.0.55-2.4.7.1.40.amzn1 | java-1.7.0-openjdk-1.7.0.55-2.4.7.1.40.amzn1.i686.rpm |
Amazon Linux | 1 | i686 | java-1.7.0-openjdk-debuginfo | 1.7.0.55-2.4.7.1.40.amzn1 | java-1.7.0-openjdk-debuginfo-1.7.0.55-2.4.7.1.40.amzn1.i686.rpm |
Amazon Linux | 1 | i686 | java-1.7.0-openjdk-devel | 1.7.0.55-2.4.7.1.40.amzn1 | java-1.7.0-openjdk-devel-1.7.0.55-2.4.7.1.40.amzn1.i686.rpm |
Amazon Linux | 1 | noarch | java-1.7.0-openjdk-javadoc | 1.7.0.55-2.4.7.1.40.amzn1 | java-1.7.0-openjdk-javadoc-1.7.0.55-2.4.7.1.40.amzn1.noarch.rpm |
Amazon Linux | 1 | x86_64 | java-1.7.0-openjdk-debuginfo | 1.7.0.55-2.4.7.1.40.amzn1 | java-1.7.0-openjdk-debuginfo-1.7.0.55-2.4.7.1.40.amzn1.x86_64.rpm |
Amazon Linux | 1 | x86_64 | java-1.7.0-openjdk | 1.7.0.55-2.4.7.1.40.amzn1 | java-1.7.0-openjdk-1.7.0.55-2.4.7.1.40.amzn1.x86_64.rpm |
Amazon Linux | 1 | x86_64 | java-1.7.0-openjdk-demo | 1.7.0.55-2.4.7.1.40.amzn1 | java-1.7.0-openjdk-demo-1.7.0.55-2.4.7.1.40.amzn1.x86_64.rpm |
Amazon Linux | 1 | x86_64 | java-1.7.0-openjdk-src | 1.7.0.55-2.4.7.1.40.amzn1 | java-1.7.0-openjdk-src-1.7.0.55-2.4.7.1.40.amzn1.x86_64.rpm |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo