Lucene search
HistoryNov 15, 2023 - 2:15 p.m.
CVE-2023-5676
cve-2023-5676
jvm
spinlock
segmentation fault
shutdown signal
sigterm
sigint
sighup
infinite busy hang
5.9 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
0.0004 Low
EPSS
Percentile
13.3%
In Eclipse OpenJ9 before version 0.41.0, the JVM can be forced into an infinite busy hang on a spinlock or a segmentation fault if a shutdown signal (SIGTERM, SIGINT or SIGHUP) is received before the JVM has finished initializing.
Affected configurations
Node
eclipseopenj9Range<0.41.0
Related
osv
osv
CVE-2023-5676
2023-11-15 14:15:07
prion
prion
Design/Logic Flaw
2023-11-15 14:15:00
ibm
ibm
cvelist
cvelist
CVE-2023-5676 Eclipse OpenJ9 possible infinite busy hang
2023-11-15 14:02:01
redhatcve
redhatcve
CVE-2023-5676
2023-11-17 10:44:47
nessus
nessus
IBM Java 7.1 < 7.1.5.20 / 8.0 < 8.0.8.15
2023-11-17 00:00:00
openSUSE 15 Security Update : java-1_8_0-openj9 (SUSE-SU-2023:4612-1)
2023-11-29 00:00:00
CentOS 7 : java-1.8.0-ibm (RHSA-2024:0879)
2024-02-20 00:00:00
cve
cve
CVE-2023-5676
2023-11-15 14:15:07
redhat
redhat
(RHSA-2024:0879) Moderate: java-1.8.0-ibm security update
2024-02-20 08:52:56
(RHSA-2024:0866) Moderate: java-1.8.0-ibm security update
2024-02-19 17:55:11
aix
aix
Multiple vulnerabilities in IBM Java SDK affect AIX
2023-12-18 09:27:21
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2023:4572-1)
2023-11-28 00:00:00
openSUSE: Security Advisory for java (SUSE-SU-2024:0479-1)
2024-03-04 00:00:00
5.9 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
0.0004 Low
EPSS
Percentile
13.3%
Related for NVD:CVE-2023-5676