2 matches found
OpenJDK: improper MultiByte conversion can lead to buffer overflow (JGSS, 8286077)
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JGSS. Supported versions that are affected are Oracle Java SE: 17.0.4.1, 19; Oracle GraalVM Enterprise Edition: 21.3.3 and 22.2.0. Easily exploitable vulnerability allows unauthenticated...
Improper Access Control
Oracle Java SE is vulnerable to Improper Access Control vulnerability. This is because GSS component of OpenJDK failed to properly handle GSS context in the native GSS library wrapper in certain cases. A local attacker could possibly use this flaw to cause unauthorized creation, deletion or...