Security Bulletin: Rational RequisitePro affected by Java vulnerabilities (CVE-2014-4244, CVE-2014-4263)

Summary This bulletin covers remediation measures for the CVEs published in Oracle's July 2014 CPU that affect Rational RequisitePro. Vulnerability Details | Subscribe to My Notifications to be notified of important product support alerts like this. Follow this link for more information requires...

Security Bulletin: Multiple vulnerability in IBM Java Runtime affect IBM Security SiteProtector System (CVE-2016-5597 CVE-2016-5546 CVE-2016-5548 CVE-2016-5549 CVE-2016-5547 CVE-2016-2183)

Summary There are multiple vulnerabilities in IBM® Runtime Environment Java™ Version 1.7 used by IBM Security SiteProtector System. These issues were disclosed as part of the IBM Java SDK updates in Oct 2016 and Jan 2017. Vulnerability Details CVEID: CVE-2016-5597 DESCRIPTION: An unspecified...

Security Bulletin: Multiple Java Vulnerabilities fixed in IBM Security Directory Server

Summary Multiple Java vulnerabilities have been fixed in the IBM Security Directory Server. Vulnerability Details CVEID: CVE-2015-4844 DESCRIPTION: An unspecified vulnerability in Oracle Java SE related to the 2D component has complete confidentiality impact, complete integrity impact, and comple...

Security Bulletin: IBM Security Identity Manager Virtual Appliance affected by Java vulnerabilities (CVE-2015-0138 CVE-2015-0204 CVE-2015-1914 CVE-2015-2808 )

Summary IBM Security Identity Manager Virtual Appliance version 7.0 is affected by several Java vulnerabilies. Vulnerability Details CVEID: CVE-2015-0138 DESCRIPTION: A vulnerability in various IBM SSL/TLS implementations could allow a remote attacker to downgrade the security of certain SSL/TLS...

Security Bulletin: Multiple vulnerabilities in IBM® Runtime Environments Java™ Technology Edition, Versions 5, 6, 7, 8 affect Transformation Extender (CVE-2016-0466, CVE-2015-4872, CVE-2015-7575)

Summary There are multiple vulnerabilities in IBM® Runtime Environments Java™ Technology Edition, Versions 5, 6, 7, 8 that are used by Transformation Extender. These issues were disclosed as part of the IBM Java SDK updates in October 2015 and January 2016 and include the vulnerability commonly...

Security Bulletin: Multiple Java Vulnerabilities affect DB2 Text Search Stand Alone Accessories Suite

Summary There are multiple vulnerabilities in the JDK bundled by the DB2 Text Search Stand Alone Accessories Suite Vulnerability Details CVEID: CVE-2016-5568 DESCRIPTION: An unspecified vulnerability in Oracle Java SE related to the AWT component has high confidentiality impact, high integrity...

Security Bulletin: Multiple vulnerabilities in IBM SDK for Java Technology Edition affect IBM Business Process Manager and WebSphere Lombardi Edition (CVE-2014-6512, CVE-2014-6457, CVE-2014-6558, CVE-2014-3566)

Summary There are multiple vulnerabilities in IBM SDK for Java Technology Edition that is used by IBM Business Process Manager and WebSphere Lombardi Edition. This also includes a fix for the Padding Oracle On Downgraded Legacy Encryption POODLE SSLv3 vulnerability CVE-2014-3566. These issues wer...

SUSE-SU-2018:0645-1 Security update for java-1_7_0-ibm

This update for java-170-ibm provides the following fixes: The version was updated to 7.0.10.20 bsc1082810: Following security issues were fixed: - CVE-2018-2633 CVE-2018-2637 CVE-2018-2634 CVE-2018-2582 CVE-2018-2641 CVE-2018-2618 CVE-2018-2657 CVE-2018-2603 CVE-2018-2599 CVE-2018-2602...

RHEL 7 : java-1.8.0-ibm (RHSA-2018:0351)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:0351 advisory. IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE ...

BSA-2018-564

Security Advisory ID : BSA-2018-564 Component : Oracle Java Revision : 1.1: update The January 2018 Critical Patch Update provides security updatesfor certain Oracle Java Platform software libraries. Java SE JDK and JRE versions through 6u171, 7u161, 8u152, and 9.0.1 are affected by vulnerabiliti...

RHEL 7 : java-1.8.0-oracle (RHSA-2018:0099)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:0099 advisory. Oracle Java SE version 8 includes the Oracle Java Runtime Environment and the Oracle Java Software Development Kit. This update upgrades...

SUSE-SU-2017:3455-1 Security update for java-1_7_1-ibm

This update for java-171-ibm fixes the following issues: - Security update to version 7.1.4.15 bsc1070162 CVE-2017-10349: 'Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: Serialization. Supported versions that are affected are Java SE: 6u161, 7u15...

October 19, 2017 – Morning Cyber Coffee Headlines – “NCAA Football” Edition

Good morning! Sit with Carbon Black this morning over a cup of coffee or tea and browse a few industry headlines to get the day started. We’ve got just enough information below to get you through that first cup…enjoy! October 19, 2017 - Headlines Carbon Black in the News: Did you hear about the...

SUSE-SU-2017:1400-1 Security update for java-1_7_0-openjdk

This update for java-170-openjdk fixes the following issues: - Update to 2.6.10 - OpenJDK 7u141 bsc1034849 Security fixes - S8163520, CVE-2017-3509: Reuse cache entries - S8163528, CVE-2017-3511: Better library loading - S8165626, CVE-2017-3512: Improved window framing - S8167110, CVE-2017-3514:...

SUSE-SU-2017:1384-1 Security update for java-1_7_0-ibm

This update for java-170-ibm fixes the following issues: Version update to 7.0-10.5 bsc1038505 - CVE-2016-9840: zlib: Out-of-bounds pointer arithmetic in inftrees.c - CVE-2016-9841: zlib: Out-of-bounds pointer arithmetic in inffast.c - CVE-2016-9842: zlib: Undefined left shift of negative number ...

SUSE-SU-2016:3078-1 Security update for java-1_8_0-ibm

This update for java-180-ibm fixes the following issues: - CVE-2016-5568: Unspecified vulnerability allowed remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT - CVE-2016-5556: Unspecified vulnerability allowed remote attackers to affect...

F5 Networks BIG-IP : Java vulnerabilities (K50118123)

CVE-2016-0466 Unspecified vulnerability in the Java SE, Java SE Embedded, and JRockit components in Oracle Java SE 6u105, 7u91, and 8u66; Java SE Embedded 8u65; and JRockit R28.3.8 allows remote attackers to affect availability via vectors related to JAXP. CVE-2016-0483 Unspecified vulnerability ...

F5 BIG-IP - Java vulnerabilities CVE-2013-5825 and CVE-2013-5830

Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, JRockit R28.2.8 and earlier, JRockit R27.7.6 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect availability via vectors related to JAXP. Unspecifi...

F5 Networks BIG-IP : Java vulnerabilities (K48802597)

CVE-2013-5825 Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, JRockit R28.2.8 and earlier, JRockit R27.7.6 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect availability via vectors related to...

SOL48802597 - Java vulnerabilities CVE-2013-5825 and CVE-2013-5830

Vulnerability Recommended Actions If you are running a version listed in the Versions known to be vulnerable column, you can eliminate this vulnerability by upgrading to a version listed in the Versions known to be not vulnerable column. If the table lists only an older version than what you are...