CVE-2015-0492

CVE-2015-0492 is an unspecified vulnerability in Oracle Java SE 7u76, 8u40, and JavaFX 2.2.76 that could affect confidentiality, integrity, and availability via unknown vectors. Connected sources confirm this CVE was addressed by OpenJDK/OpenJRE/JDK security updates in openSUSE/SUSE advisories (e...

Oracle Patch Update Delivers 98 Fixes

Released alongside patches from Microsoft and Adobe yesterday, Oracle’s regularly scheduled Critical Patch Update fixed 98 issues across a handful of products, including Oracle’s Database, Fusion Middleware, Java SE, and MySQL, to name a few. One of the most pressing issues the update resolves is...

UBUNTU-CVE-2015-0460

Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot...

KLA10548 Multiple vulnerabilities in Oracle products

An unspecified vulnerabilities were found in Oracle products. By exploiting these vulnerabilities malicious users can affect integrity, availability and confidentiality. These vulnerabilities can be exploited remotely via an unknown vectors related to 2D, Hotspot, JavaFX, Delpoyment, Tools, JSSE,...

Mandriva Linux Security Advisory : lcms2 (MDVSA-2015:107)

Updated lcms2 packages fix security vulnerability : Unspecified vulnerability in Oracle Java SE 7u51 and 8, and Java SE Embedded 7u51, allows remote attackers to affect availability via unknown vectors related to 2D CVE-2014-0459. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descripti...

OpenJDK: insufficient Diffie-Hellman public key validation (Security, 8037162)

Unspecified vulnerability in Oracle Java SE 5.0u65, 6u75, 7u60, and 8u5, and JRockit R27.8.2 and R28.3.2, allows remote attackers to affect confidentiality and integrity via unknown vectors related to "Diffie-Hellman key agreement."...

JDK: unspecified vulnerability fixed in 6u85, 7u71 and 8u25 (Deployment)

Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2014-6493, CVE-2014-6503, and CVE-2014-6532...

Oracle Java SE JRE Unspecified Vulnerability-02 (Feb 2015) - Linux

Oracle Java SE JRE is prone to some unspecified vulnerability. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

jdk8-openjdk: multiple issues

CVE-2014-3566 man-in-the-middle Nondeterministic CBC padding, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, aka the "POODLE" issue. - CVE-2014-6549 arbitrary code execution Incorrect class loader permission check in ClassLoader...

jre7-openjdk: multiple issues

CVE-2014-3566 man-in-the-middle Nondeterministic CBC padding, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, aka the "POODLE" issue. - CVE-2014-6585 out-of-bounds read Allows remote attackers to affect confidentiality via font parsing...

CVE-2015-0412

Unspecified vulnerability in Oracle Java SE 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAX-WS...

CVE-2015-0412

CVE-2015-0412 affects Oracle Java SE 6u85, 7u72, and 8u25 with exploitation via JAX-WS vectors, potentially impacting confidentiality, integrity and availability. Connected sources indicate this OpenJDK/Java vulnerability has been addressed in multiple vendor advisories: Debian security notices (...

CVE-2015-0437

CVE-2015-0437: Oracle Java SE 8u25 Hotspot vulnerability with complete confidentiality, integrity, and availability impact. Exploitation vectors are not detailed in the provided documents. Remediation guidance appears in IBM advisories for related products, recommending updating to fixed IBM Java...

CVE-2015-0410

Unspecified vulnerability in the Java SE, Java SE Embedded, JRockit component in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25; Java SE Embedded 7u71 and 8u6; and JRockit R27.8.4 and R28.3.4 allows remote attackers to affect availability via unknown vectors related to Security...

CVE-2015-0403

Unspecified vulnerability in Oracle Java SE 6u85, 7u72, and 8u25 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Deployment...

CVE-2015-0383

Unspecified vulnerability in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25; Java SE Embedded 7u71 and 8u6; and JRockit R27.8.4 and R28.3.4 allows local users to affect integrity and availability via unknown vectors related to Hotspot...

Security feature bypass

Unspecified vulnerability in the Java SE, Java SE Embedded, JRockit component in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25; Java SE Embedded 7u71 and 8u6; and JRockit R27.8.4 and R28.3.4 allows remote attackers to affect availability via unknown vectors related to Security...

CVE-2015-0410

CVE-2015-0410 is a denial-of-service weakness in the OpenJDK/Hotspot DER decoder. A remote attacker could exploit a crafted DER-encoded input to trigger an infinite loop in the decoder, impacting availability. Public disclosures in Debian and CentOS advisories list OpenJDK 6/7 (and related Java S...

CVE-2015-0410

Unspecified vulnerability in the Java SE, Java SE Embedded, JRockit component in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25; Java SE Embedded 7u71 and 8u6; and JRockit R27.8.4 and R28.3.4 allows remote attackers to affect availability via unknown vectors related to Security...

CVE-2015-0403

CVE-2015-0403 is an Oracle Java SE vulnerability in the Deployment component that affects 6u85, 7u72 and 8u25. It is described as unspecified, with complete confidentiality, integrity, and availability impact. Public details in connected IBM/Oracle references do not provide exploit vectors or fix...