Malicious Package

Overview java-common is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorshi...

MAL-2025-48369 Malicious code in java-common (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 555d7c368b052227256d6f6b35ce4b6d84da939df3127667ff6e73515dbee1bd Any computer that has this package installed or running should be considered...

Malicious code in java-common (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 555d7c368b052227256d6f6b35ce4b6d84da939df3127667ff6e73515dbee1bd Any computer that has this package installed or running should be considered...

RHSA-2020:0057 Red Hat Security Advisory: rh-java-common-apache-commons-beanutils security update

Bulletin has no description...

RHSA-2017:1417 Red Hat Security Advisory: rh-java-common-log4j security update

Bulletin has no description...

RHSA-2017:3452 Red Hat Security Advisory: rh-java-common-lucene5 security update

Bulletin has no description...

RHSA-2017:3451 Red Hat Security Advisory: rh-java-common-lucene security update

Bulletin has no description...

RHSA-2018:1784 Red Hat Security Advisory: rh-java-common-xmlrpc security update

Bulletin has no description...

RHEL 6 / 7 : rh-java-common-lucene (RHSA-2017:3451)

The remote Redhat Enterprise Linux 6 / 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2017:3451 advisory. Apache Lucene is a high-performance, full-featured text search engine library written entirely in Java. It is a technology suitable for nearly an...

RHEL 6 / 7 : rh-java-common-lucene5 (RHSA-2017:3452)

The remote Redhat Enterprise Linux 6 / 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2017:3452 advisory. Apache Lucene is a high-performance, full-featured text search engine library written entirely in Java. It is a technology suitable for nearly an...

club.mrxiao:express-java-common (>=1.0.0 <=1.0.2), club.mrxiao:express-java-jdl (>=1.0.0 <=1.0.2) +439 more potentially affected by CVE-2023-42278 via cn.hutool:hutool-json (>=4.0.0 <=5.8.21)

cn.hutool:hutool-json MAVEN version =4.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =2.0.3, =2.0.5, =2.0.1.B, =2.0.1.B, =2.0.1.B, =1.0.1, =1.0.3 and more Source cves: CVE-2023-42278 Source advisory: OSV:GHSA-RR66-QH5M-W6MX...

club.mrxiao:express-java-common (>=1.0.0 <=1.0.2), club.mrxiao:express-java-jdl (>=1.0.0 <=1.0.2) +439 more potentially affected by CVE-2023-42277 via cn.hutool:hutool-json (>=4.0.0 <=5.8.21)

cn.hutool:hutool-json MAVEN version =4.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =2.0.3, =2.0.5, =2.0.1.B, =2.0.1.B, =2.0.1.B, =1.0.1, =1.0.3 and more Source cves: CVE-2023-42277 Source advisory: OSV:GHSA-7P8C-CRFR-Q93P...

club.mrxiao:express-java-common (>=1.0.0 <=1.0.2), club.mrxiao:express-java-jdl (>=1.0.0 <=1.0.2) +263 more potentially affected by CVE-2022-45689 via cn.hutool:hutool-json (>=4.0.0 <=5.8.10)

cn.hutool:hutool-json MAVEN version =4.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =2.0.3, =2.0.5, =2.0.1.B, =2.0.1.B, =2.0.1.B, =1.0.1, =1.0.3 and more Source cves: CVE-2022-45689 Source advisory: OSV:GHSA-FXRC-HG6J-6V3X...

app.myoss.wechat:wechat-starter-core (>=1.0.0.RELEASE <=1.1.0.RELEASE), app.myoss.wechat:wechat-starter-mini-app (=1.1.0.RELEASE) +42 more potentially affected by CVE-2019-5312 via com.github.binarywang:weixin-java-common (>=1.3.4 <=3.3.1.B)

com.github.binarywang:weixin-java-common MAVEN version =1.3.4, =1.0.0.RELEASE, =1.0.0.RELEASE, =1.0.0.RELEASE, =1.3.4, =2.6.4.BETA, =1.3.4, =2.8.7.BETA, =2.2.3, =2.5.2.BETA, =0.0.1, =0.0.1, =0.0.14 and more Source cves: CVE-2019-5312 Source advisory: OSV:GHSA-H755-H99P-9FFV...

ai.foxpay.api:foxpay-sdk (>=1.0 <=1.1), ai.genauth:genauth-java-sdk (=3.1.11) +261 more potentially affected by CVE-2022-22885 via cn.hutool:hutool-http (>=4.0.12 <=5.7.18)

cn.hutool:hutool-http MAVEN version =4.0.12, =1.0, =2.4.3, =2.4.3, =2.4.3, =2.4.3, =2.4.3, =2.4.3, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =2.0.3, =2.0.5, =3.0.2 and more Source cves: CVE-2022-22885 Source advisory: OSV:GHSA-P7W9-8MXW-P3G7...

Moderate: Red Hat Security Advisory: rh-java-common-lucene security update

An update for rh-java-common-lucene is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

[SECURITY] [DLA 530-1] java-common security update

Package : java-common Version : 0.47+deb7u2 As previously announced 12, the default Java implementation has been switched from OpenJDK 6 to OpenJDK 7. We strongly recommend to remove the unsupported OpenJDK 6 packages which will receive no further security updates. 1...

[SECURITY] default-java switch to OpenJDK 7 and java-common update

Package : java-common Version : 0.47+deb7u1 In preparation for the upcoming default-java switch to OpenJDK 7 on 26 June 2016, the java-common package was updated to inform users about the intended change. The news will be automatically shown, if apt-listchanges has been installed on the system...

[SECURITY] default-java switch to OpenJDK 7 and java-common update

Package : java-common Version : 0.47+deb7u1 In preparation for the upcoming default-java switch to OpenJDK 7 on 26 June 2016, the java-common package was updated to inform users about the intended change. The news will be automatically shown, if apt-listchanges has been installed on the system...