Lucene search
K

10 matches found

CloudLinux
CloudLinux
added 2026/03/14 4:49 p.m.11 views

java-1.8.0-openjdk: Fix of 5 CVEs

Upgrade to openjdk-shenandoah-jdk8u-shenandoah-jdk8u482-b08. That fixes following CVEs: - CVE-2025-53057: Security: enforce proper access control in certificate handling to prevent data tampering - CVE-2025-53066: JAXP: restrict data access in Path Factory processing to prevent information...

7.5CVSS6.7AI score0.00864EPSS
Exploits1
OSV
OSV
added 2026/02/03 11:21 a.m.7 views

CLSA-2026-1770117675 java-1.8.0-openjdk: Fix of CVE-2026-21945

Update to openjdk-shenandoah-jdk8u-shenandoah-jdk8u482-b03. - CVE-2026-21945: Security component vulnerability allowing unauthenticated attacker with network access to cause hang or crash DoS...

7.5CVSS6.6AI score0.00864EPSS
Exploits0References1
OSV
OSV
added 2024/08/21 4:54 p.m.9 views

CLSA-2024-1724259268 java-1.8.0-openjdk: Fix of 6 CVEs

Upgrade to openjdk-shenandoah-jdk8u-shenandoah-jdk8u422-b05. That fixes following CVEs: - CVE-2024-21131: UTF8 size overflow - CVE-2024-21138: Infinite loop vunlerability in SymbolTable - CVE-2024-21140: Int overflow/underflow in Range Check Elimination RCE - CVE-2024-21144: Invalid header...

7.4CVSS6.7AI score0.01257EPSS
Exploits0References1
OSV
OSV
added 2024/01/31 10:45 a.m.14 views

CLSA-2024-1706697909 java-1.8.0-openjdk: Fix of 8 CVEs

Upgrade to openjdk-shenandoah-jdk8u-shenandoah-jdk8u402-b06. That fixes following CVEs: - CVE-2024-20918: Array out-of-bounds access due to missing range check in C1 compiler - CVE-2024-20919: JVM class file verifier flaw allows unverified bytecode execution - CVE-2024-20921: Range check loop...

7.4CVSS6.8AI score0.014EPSS
Exploits0References1
OSV
OSV
added 2024/01/31 10:28 a.m.7 views

CLSA-2024-1706696899 java-1.8.0-openjdk: Fix of 8 CVEs

Upgrade to openjdk-shenandoah-jdk8u-shenandoah-jdk8u402-b06. That fixes following CVEs: - CVE-2024-20918: Array out-of-bounds access due to missing range check in C1 compiler - CVE-2024-20919: JVM class file verifier flaw allows unverified bytecode execution - CVE-2024-20921: Range check loop...

7.4CVSS6.8AI score0.014EPSS
Exploits0References1
OSV
OSV
added 2024/01/31 10:21 a.m.4 views

CLSA-2024-1706696494 java-1.8.0-openjdk: Fix of 8 CVEs

Upgrade to openjdk-shenandoah-jdk8u-shenandoah-jdk8u402-b06. That fixes following CVEs: - CVE-2024-20918: Array out-of-bounds access due to missing range check in C1 compiler - CVE-2024-20919: JVM class file verifier flaw allows unverified bytecode execution - CVE-2024-20921: Range check loop...

7.4CVSS6.8AI score0.014EPSS
Exploits0References1
CloudLinux
CloudLinux
added 2023/07/06 9:40 p.m.41 views

java-1.8.0-openjdk: Fix of 7 CVEs

Upgrade to openjdk-shenandoah-jdk8u-shenandoah-jdk8u372-b07. That fixes following CVEs: - CVE-2023-21930: Improper connection handling during TLS handshake 8294474 - CVE-2023-21937: Missing string checks for NULL characters 8296622 - CVE-2023-21938: Incorrect handling of NULL characters in...

7.4CVSS6.9AI score0.02474EPSS
Exploits1
OSV
OSV
added 2023/02/09 11:15 p.m.5 views

CLSA-2023-1675984558 java-1.8.0-openjdk: Fix of 2 CVEs

Upgrade to openjdk-shenandoah-jdk8u-shenandoah-jdk8u362-b09. That fixes following CVEs: - CVE-2023-21830: Improper restrictions in CORBA deserialization Serialization, 8285021 - CVE-2023-21843: Soundbank URL remote loading Sound, 8293742 - Update tzdata requirement to 2022g to match JDK-8297804 -...

5.3CVSS6.4AI score0.01357EPSS
Exploits0References1
OSV
OSV
added 2022/11/03 5:14 p.m.7 views

CLSA-2022-1667495676 java-1.8.0-openjdk: Fix of 4 CVEs

Upgrade to openjdk-shenandoah-jdk8u-shenandoah-jdk8u352-b08. That fixes following CVEs: - CVE-2022-21619: Improper handling of long NTLM client hostnames - CVE-2022-21624: Insufficient randomization of JNDI DNS port numbers - CVE-2022-21626: Excessive memory allocation in X.509 certificate...

5.3CVSS6.4AI score0.02376EPSS
Exploits0References1
OSV
OSV
added 2022/05/25 7:31 p.m.10 views

CLSA-2022-1653507078 Fixed of 5 CVEs in java-1.8.0-openjdk

Upgrade to openjdk-shenandoah-jdk8u-shenandoah-jdk8u332-b09. That fixes following CVEs: - CVE-2022-21476: Defective secure validation in Apache Santuario - CVE-2022-21496: URI parsing inconsistencies - CVE-2022-21434: Improper object-to-string conversion in AnnotationInvocationHandler -...

7.5CVSS6.9AI score0.03825EPSS
Exploits0References1
Rows per page
Query Builder