1357 matches found
CVE-2016-0475
Unspecified vulnerability in the Java SE, Java SE Embedded, and JRockit components in Oracle Java SE 8u66; Java SE Embedded 8u65; and JRockit R28.3.8 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Libraries...
Code injection
Unspecified vulnerability in the Java SE and Java SE Embedded components in Oracle Java SE 6u105, 7u91, and 8u66 and Java SE Embedded 8u65 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D...
CVE-2016-0448
Unspecified vulnerability in the Java SE and Java SE Embedded components in Oracle Java SE 6u105, 7u91, and 8u66, and Java SE Embedded 8u65 allows remote authenticated users to affect confidentiality via vectors related to JMX...
CVE-2016-0402
Unspecified vulnerability in the Java SE and Java SE Embedded components in Oracle Java SE 6u105, 7u91, and 8u66 and Java SE Embedded 8u65 allows remote attackers to affect integrity via unknown vectors related to Networking...
CVE-2016-0402
Unspecified vulnerability in the Java SE and Java SE Embedded components in Oracle Java SE 6u105, 7u91, and 8u66 and Java SE Embedded 8u65 allows remote attackers to affect integrity via unknown vectors related to Networking...
CVE-2016-0494
CVE-2016-0494 is discussed in OpenJDK/ICU-related advisories where the 2D font/IndicRearrangement/ICU Layout Engine area exhibits integer signedness issues that could affect confidentiality, integrity, and availability. The connected sources (ALAS advisories) identify affected OpenJDK packages (j...
CVE-2016-0483
CVE-2016-0483 affects Oracle Java SE 6u105, 7u91, 8u66; Java SE Embedded 8u65; and JRockit R28.3.8. Described as an unspecified vulnerability with potential to affect confidentiality, integrity, and availability via vectors related to AWT; some sources note a heap-based buffer overflow in readIma...
CVE-2016-0402
CVE-2016-0402 affects multiple OpenJDK/OpenJDK-based products (OpenJDK 6/7/8, including Java SE 6u105, 7u91, 8u66 and Embedded equivalents) with a networking-related vulnerability that can impact integrity. Connected advisories confirm affected components include Networking, as well as JMX and 2D...
CVE-2016-0475
CVE-2016-0475 is an Oracle Java SE/Java SE Embedded/JRockit integrity/confidentiality issue in the Libraries component (base score 5.8). IBM sources map the vulnerability to runtime/JVM components used by IBM products (e.g., IBM SAN Volume Controller and Storwize family). Remediation is to upgrad...
CVE-2016-0448
CVE-2016-0448 is an unspecified vulnerability in Oracle Java SE and Java SE Embedded, with vectors related to the JMX component that could lead to partial confidentiality impact. Affected product set includes Oracle Java SE 6u105, 7u91, and 8u66, plus Java SE Embedded 8u65. Multiple connected adv...
UBUNTU-CVE-2016-0466
Unspecified vulnerability in the Java SE, Java SE Embedded, and JRockit components in Oracle Java SE 6u105, 7u91, and 8u66; Java SE Embedded 8u65; and JRockit R28.3.8 allows remote attackers to affect availability via vectors related to JAXP...
KLA10743 Multiple vulnerabilities in Oracle Java SE
An unspecified vulnerabilities were found in Oracle Java SE. By exploiting these vulnerabilities malicious users can affect application confidentiality, integrity and availability. These vulnerabilities can be exploited remotely via an unknown vectors related to 2D, AWT, Libraries, Networking,...
OpenJDK: missing checks for proper initialization in ObjectStreamClass (Serialization, 8103671)
Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Serialization...
OpenJDK: incomplete MaxXMLNameLimit enforcement (JAXP, 8086733)
Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60; Java SE Embedded 8u51; and JRockit R28.3.7 allows remote attackers to affect availability via vectors related to JAXP, a different vulnerability than CVE-2015-4803 and CVE-2015-4911...
ICU: missing boundary checks in layout engine (OpenJDK 2D, 8132042)
Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D...
OpenJDK: incorrect access control context used in DGCImpl (RMI, 8080688)
Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to RMI, a different vulnerability than CVE-2015-4883...
OpenJDK: incomplete constraints enforcement by AlgorithmChecker (Security, 8131291)
Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60; Java SE Embedded 8u51; and JRockit R28.3.7 allows remote attackers to affect integrity via unknown vectors related to Security...
OpenJDK: insufficient proxy class checks in RemoteObjectInvocationHandler (RMI, 8076339)
Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect confidentiality via vectors related to RMI...
openSUSE Security Update : java-1_7_0-openjdk (openSUSE-2015-695)
java-170-openjdk was updated to fix 17 security issues. These security issues were fixed : - CVE-2015-4843: Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allowed remote attackers to affect confidentiality, integrity, and availability via unknown...
openSUSE Security Update : java-1_8_0-openjdk (openSUSE-2015-696)
java-180-openjdk was updated to fix 24 security issues. These security issues were fixed : - CVE-2015-4734: A remote user can exploit a flaw in the Embedded JGSS component to partially access data - CVE-2015-4803: A remote user can exploit a flaw in the JRockit JAXP component to cause partial...