SUSE CVE-2017-10309

Vulnerability in the Java SE component of Oracle Java SE subcomponent: Deployment. Supported versions that are affected are Java SE: 8u144 and 9. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks...

KLA11233 Oracle Java SE 9 end of life

Oracle announced the end of support of Java SE 9. Users should immediately make transition to Java SE 10 18.3. Original advisories Oracle Java SE Support Roadmap Related products Oracle-Java-JRE-1.9.x CVE list Solution Update to Java SE 10 18.3 Download Java Affected Products - Oracle Java SE 9...

PT-2017-11275 · Oracle +2 · Java Se +3

Name of the Vulnerable Software and Affected Versions: Java SE versions 6u161, 7u151, 8u144 and 9 Description: The issue allows an unauthenticated attacker with network access via HTTP to compromise Java SE, requiring human interaction from a person other than the attacker. Successful attacks can...

Broken 2013 Java Patch Leads to Sandbox Bypass

Java’s miserable 2013 just will not go away. One of the endless parade of bugs found in the platform throughout 2013—many of which were zero-day vulnerabilities exploited in targeted attacks—apparently wasn’t closed off completely by an October 2013 patch released by Oracle. Researchers at Polish...