SUSE-SU-2026:1955-1 Security update for java-1_8_0-openjdk

This update for java-180-openjdk fixes the following issues - CVE-2026-22007: APIs in the specified component can lead to an unauthorized read access bsc1262490. - CVE-2026-22013: unauthenticated attacker with network access can access to critical data bsc1262494. - CVE-2026-22016: APIs in the...

CLSA-2026-1778488382 java-1.8.0-openjdk: Fix of 8 CVEs

Update to shenandoah-jdk8u492-b09 - Security fixes from OpenJDK 8u492-b09: - CVE-2026-22003: enhance behavior of some intrinsics - CVE-2026-22007: enhance crypto algorithm support - CVE-2026-22013: improve Kerberos credentialing - CVE-2026-22018: enhance Zip file reading - CVE-2026-22021: enhance...

Security update for java-21-openjdk

This update for java-21-openjdk fixes the following issues: Update to upstream tag jdk-21.0.11+10 April 2026 CPU. Security issues fixed: CVE-2026-22007: Security: unauthenticated attacker with logon to the infrastructure where java executes can gain unauthorized read access to a subset of...

SUSE-SU-2026:0342-1 Security update for java-25-openjdk

This update for java-25-openjdk fixes the following issues: Update to upstream tag jdk-25.0.2+10 January 2026 CPU Security fixes: - CVE-2026-21925: Fixed Oracle Java SE component RMI bsc1257034. - CVE-2026-21932: Fixed Oracle Java SE component AWT and JavaFX bsc1257036. - CVE-2026-21933: Fixed...

SUSE-SU-2025:4039-1 Security update for java-1_8_0-openjdk

This update for java-180-openjdk fixes the following issues: Update to version jdk8u472 icedtea-3.37.0: - CVE-2025-53057: Fixed certificate handling leading to unauthorized creation, deletion or modification access to critical data bsc1252414 - CVE-2025-53066: Fixed Path factories leading to...

SUSE SLES12 Security Update : java-1_8_0-openjdk (SUSE-SU-2025:03120-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:03120-1 advisory. Update to version jdk8u462 icedtea-3.36.0. Security issues fixed: - CVE-2025-30749: heap corruption allows unauthenticated attacker with netwo...

Fedora 39 : java-latest-openjdk (2024-c8a49099c6)

The remote Fedora 39 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-c8a49099c6 advisory. Updated to latest security jdk update Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has...

PT-2023-7311 · Oracle +1 · Jdk +1

Name of the Vulnerable Software and Affected Versions: Eclipse Glassfish versions 5 or 6 Description: The issue exists due to insufficient input validation, allowing a remote attacker to load malicious code on the server. This can be achieved via access to insecure ORB listeners when running with...

Security Bulletin: InfoSphere BigInsights affected by vulnerabilities in IBM SDK Java™ Technology Edition (CVE-2013-4002, CVE-2013-5780)

Summary InfoSphere BigInsights is vulnerable to two vulnerabilities in IBM SDK Java Technology Edition. Vulnerability Details CVE-2013-4002 DESCRIPTION: A denial of service vulnerability in the Apache Xerces-J parser used by IBM SDK Java Technology Edition could result in a complete availability...

java-11-openjdk security and enhancement update

1:11.0.8.10-0 - Update to shenandoah-jdk-11.0.8+10 GA - Switch to GA mode for final release. - Update release notes with last minute fix JDK-8248505. - This tarball is embargoed until 2020-07-14 @ 1pm PT. - Resolves: rhbz1838811 1:11.0.8.9-0.0.ea - Update to shenandoah-jdk-11.0.8+9 EA - Update...

IBM DB2 vulnerable to denial-of-service (DoS)

Overview IBM DB2 contains a denial-of-service DoS vulnerability. IBM DB2 contains a denial-of-service DoS vulnerability due to an issue in Java Runtime Environment JRE. Impact An attacker that can create or execute stored procedures may cause a denial-of-service DoS. Solution Apply a workaround...