Buffer overflow

Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect confidentiality and integrity via unknown vectors related to Libraries...

CVE-2015-4734

CVE-2015-4734 affects Oracle Java SE 6u101, 7u85, 8u60 and Java SE Embedded 8u51. The connected sources describe an unspecified vulnerability in the JGSS component that could allow remote attackers to obtain sensitive information (confidentiality impact). The initial entry does not provide explic...

CVE-2015-4810

CVE-2015-4810 is an unspecified vulnerability in Oracle Java SE 7u85 and 8u60, tied to the Deployment component, with local access and impacts on confidentiality, integrity, and availability (vector: unknown). The available Connected and IBM advisories reiterate this CVE as part of multiple Java ...

October 2015 Oracle Critical Patch Update

Oracle on Tuesday patched 154 vulnerabilities in 54 different products as part of its regularly scheduled Critical Patch Update. More than half of the patches, 84 to be exact, address vulnerabilities that Oracle claims may be remotely exploitable without authentication. Java SE is responsible for...

UBUNTU-CVE-2015-4872

Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60; Java SE Embedded 8u51; and JRockit R28.3.7 allows remote attackers to affect integrity via unknown vectors related to Security...

UBUNTU-CVE-2015-4806

Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect confidentiality and integrity via unknown vectors related to Libraries...

java -- multiple vulnerabilities

Oracle reports: This Critical Patch Update contains 25 new security fixes for Oracle Java SE. 24 of these vulnerabilities may be remotely exploitable without authentication, i.e., may be exploited over a network without the need for a username and password...

SOL17079 - Java SE vulnerabilities CVE-2015-2590 and CVE-2015-4732

Vulnerability Recommended Actions If the previous table lists a version in the Versions known to be not vulnerable column, you can eliminate this vulnerability by upgrading to the listed version. If the listed version is older than the version you are currently running, or if the table does not...

SUSE SLED11 Security Update : java-1_7_0-openjdk (SUSE-SU-2015:1320-1) (Bar Mitzvah) (Logjam)

OpenJDK was updated to 2.6.1 - OpenJDK 7u85 to fix security issues and bugs. The following vulnerabilities were fixed : - CVE-2015-2590: Easily exploitable vulnerability in the Libraries component allowed successful unauthenticated network attacks via multiple protocols. Successful attack of this...

Security update for java-1_8_0-openjdk (important)

OpenJDK was updated to 2.6.1 - OpenJDK 8u51 to fix security issues and bugs. The following vulnerabilities were fixed: CVE-2015-2590: Easily exploitable vulnerability in the Libraries component allowed successful unauthenticated network attacks via multiple protocols. Successful attack of this...

RHEL 5 / 6 / 7 : java-1.6.0-sun (RHSA-2015:1243) (Bar Mitzvah) (Logjam)

Updated java-1.6.0-sun packages that fix several security issues are now available for Oracle Java for Red Hat Enterprise Linux 5, 6, and 7. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detaile...

JDK: unspecified vulnerability fixed in 6u101, 7u85 and 8u51 (2D)

Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45; JavaFX 2.2.80; and Java SE Embedded 7u75 and 8u33 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D...

ICU: missing boundary checks in layout engine (OpenJDK 2D, 8071715)

Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D...

Design/Logic Flaw

Unspecified vulnerability in Oracle Java SE 7u80 and 8u45 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment...

CVE-2015-2627

Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45 allows remote attackers to affect confidentiality via unknown vectors related to installation...

CVE-2015-2659

CVE-2015-2659 is an unspecified vulnerability in Oracle Java SE 8u45 and Java SE Embedded 8u33 that could allow a remote attacker to cause a denial of service via Security-related vectors. The connected IBM and vendor advisories list multiple entries for this CVE across IBM i (and related IBM Jav...

CVE-2015-2590

CVE-2015-2590 is an unspecified vulnerability affecting Oracle Java SE (6u95, 7u80, 8u45) and Java SE Embedded (7u75, 8u33) with impact to confidentiality, integrity, and availability via unknown vectors in the Libraries component. Public details in the initial description are limited; connected ...

CVE-2015-4748

Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45; JRockit R28.3.6; and Java SE Embedded 7u75 and Embedded 8u33 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Security...

CVE-2015-4749

CVE-2015-4749 is a JNDI DNS resolution issue in OpenJDK where DnsClient may fail to remove outgoing DNS request information after errors, potentially enabling memory consumption blocks and denial of service. Public advisories (Debian, CentOS/Red Hat, Ubuntu arches, IBM AIX) reference OpenJDK 6/7/...

CVE-2015-4733

CVE-2015-4733 is an unspecified vulnerability in OpenJDK/OpenJRE components related to RMI in Oracle Java SE 6u95, 7u80, 8u45, and Java SE Embedded 7u75/8u33. It can allow remote attackers to impact confidentiality, integrity, and availability. Connected advisories confirm this vulnerability acro...