2526 matches found
Sandbox Restrictions Bypass
OpenJDK 7 Java Runtime Environment and OpenJDK 7 Software Development Kit is vulnerable to sandbox restrictions bypass. It is due to improper method-invocation restrictions by the MethodUtil trampoline class allowing remote attackers to bypass the Java sandbox...
Improper Access Control
OpenJDK is vulnerable to improper access control. The vulnerability exists in the Java Runtime Environment JRE component in Oracle Java SE. A remote attacker could affect confidentiality, integrity, and availability via unknown vectors related to 2D...
Improper Access Control
OpenJDK is vulnerable to improper access control. Vulnerability exists in the Java Runtime Environment JRE component in Oracle Java SE. An attacker can exploit this issue to execute arbitrary code in the context of the current user to affect confidentiality, integrity, and availability via unknow...
Information Disclosure
java-1.6.0-ibm is vulnerable to information disclosure due to unspecified vulnerability in the Java Runtime Environment JRE component...
Denial Of Service (DoS)
java-1.6.0-ibm is vulnerable to denial of service DoS due to unspecified vulnerability in the Java Runtime Environment JRE component...
Information Disclosure
java-1.6.0-ibm is vulnerable to information disclosure due to unspecified vulnerability in the Java Runtime Environment JRE component...
Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect IBM Cognos Business Intelligence
Summary There are multiple vulnerabilities in IBM® Runtime Environment Java™ Version 7 used by IBM Cognos Business Intelligence 10.2.2 and 10.2.1.1. IBM Cognos Business Intelligence has addressed the applicable CVEs. These issues were disclosed as part of the IBM Java SDK updates in July 2018...
Oracle Java Runtime Environment - Heap Corruption During TTF font Rendering in GlyphIterator
Oracle Java Runtime Environment - Heap Corruption During TTF font Rendering in GlyphIterator::setCurrGlyphID A heap corruption was observed in Oracle Java Runtime Environment version 8u202 latest at the time of this writing while fuzz-testing the processing of TrueType fonts. It manifests itself ...
Oracle Java Runtime Environment - Heap Corruption During TTF font Rendering in GlyphIterator::setCurrGlyphID
A heap corruption was observed in Oracle Java Runtime Environment version 8u202 latest at the time of this writing while fuzz-testing the processing of TrueType fonts. It manifests itself in the form of the following or similar crash: --- cut --- $ bin/java -cp . DisplaySfntFont test.ttf Iteratio...
Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect Rational DOORS Web Access
Summary There are multiple vulnerabilities in IBM® Runtime Environment Java™ Versions 7 and 8, which are used by IBM Rational DOORS Web Access. IBM Rational DOORS Web Access has addressed the applicable CVEs. These issues were disclosed as part of the IBM Java SDK updates in January 2019...
Virtuozzo 6 : java-1.7.0-openjdk / java-1.7.0-openjdk-demo / etc (VZLSA-2019-0462)
An update for java-1.7.0-openjdk is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
Moderate: Red Hat Security Advisory: java-1.7.0-openjdk security update
An update for java-1.7.0-openjdk is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
Moderate: Red Hat Security Advisory: java-1.7.0-openjdk security update
An update for java-1.7.0-openjdk is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
Moderate: Red Hat Security Advisory: java-1.8.0-openjdk security update
An update for java-1.8.0-openjdk is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
java security update
CentOS Errata and Security Advisory CESA-2019:0416 An update for java-1.8.0-openjdk is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detaile...
Oracle Java Runtime Environment - Heap Out-of-Bounds AlternateSubstitutionSubtable
Oracle Java Runtime Environment - Heap Out-of-Bounds Read During TTF Font Rendering in AlternateSubstitutionSubtable::process ----------------------------------------------------------------------------------------- A heap-based out-of-bounds read was observed in Oracle Java Runtime Environment...
Oracle Java Runtime Environment - Heap Out-of-Bounds OpenTypeLayoutEngine
Oracle Java Runtime Environment - Heap Out-of-Bounds Read During TTF Font Rendering in OpenTypeLayoutEngine::adjustGlyphPositions ----------------------------------------------------------------------------------- A heap-based out-of-bounds read was observed in Oracle Java Runtime Environment...
Oracle Java Runtime Environment - Heap Out-of-Bounds Read During TTF Font Rendering in ExtractBitMap_blocClass
Oracle Java Runtime Environment - Heap Out-of-Bounds Read During TTF Font Rendering in ExtractBitMapblocClass A heap-based out-of-bounds read was observed in Oracle Java Runtime Environment version 8u202 latest at the time of this writing while fuzz-testing the processing of TrueType fonts. It...
Oracle Java Runtime Environment - Heap Out-of-Bounds Read During TTF Font Rendering in OpenTypeLayoutEngine::adjustGlyphPositions
A heap-based out-of-bounds read was observed in Oracle Java Runtime Environment version 8u202 latest at the time of this writing while fuzz-testing the processing of TrueType fonts. It manifests itself in the form of the following or similar crash: --- cut --- $ bin/java -cp . DisplaySfntFont...
TAU Threat Intelligence Notification: Java Embedded MSI Files
Summary Application whitelisting provides environments with access controls to stop unauthorized software from executing. This is accomplished by utilizing file and folder attributes including but not limited to file path, filename, digital signature, publisher, cryptographic hash and product nam...