Lucene search
+L

164 matches found

Debian
Debian
added 2011/12/05 7:26 p.m.38 views

[SECURITY] [DSA 2358-1] openjdk-6 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2358-1 [email protected] http://www.debian.org/security/ December 05, 2011 http://www.debian.org/security/faq - -------------------------------------------------------------------------...

10CVSS10AI score0.96714EPSS
Exploits20
Tenable Nessus
Tenable Nessus
added 2011/12/02 12:0 a.m.262 views

Debian DSA-2356-1 : openjdk-6 - several vulnerabilities (BEAST)

Several vulnerabilities have been discovered in OpenJDK, an implementation of the Java platform : - CVE-2011-3389 The TLS implementation does not guard properly against certain chosen-plaintext attacks when block ciphers are used in CBC mode. - CVE-2011-3521 The CORBA implementation contains a...

10CVSS8.1AI score0.96714EPSS
Exploits20References26
RedHat Linux
RedHat Linux
added 2011/11/24 4:1 p.m.6 views

OpenJDK: insufficient pack200 JAR files uncompress error checks (Runtime, 7057857)

Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown...

10CVSS7.4AI score0.03277EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2011/11/17 12:0 a.m.54 views

Ubuntu 10.04 LTS / 10.10 / 11.04 / 11.10 : icedtea-web, openjdk-6, openjdk-6b18 vulnerabilities (USN-1263-1) (BEAST)

Deepak Bhole discovered a flaw in the Same Origin Policy SOP implementation in the IcedTea web browser plugin. This could allow a remote attacker to open connections to certain hosts that should not be permitted. CVE-2011-3377 Juliano Rizzo and Thai Duong discovered that the block-wise AES...

10CVSS8.5AI score0.96714EPSS
Exploits20References15
Ubuntu
Ubuntu
added 2011/11/16 8:31 p.m.89 views

USN-1263-1: IcedTea-Web, OpenJDK 6 vulnerabilities

Deepak Bhole discovered a flaw in the Same Origin Policy SOP implementation in the IcedTea web browser plugin. This could allow a remote attacker to open connections to certain hosts that should not be permitted. CVE-2011-3377 Juliano Rizzo and Thai Duong discovered that the block-wise AES...

10CVSS8.4AI score0.96714EPSS
Exploits20
Tenable Nessus
Tenable Nessus
added 2011/10/20 12:0 a.m.43 views

RHEL 5 / 6 : java-1.6.0-sun (RHSA-2011:1384)

The remote Redhat Enterprise Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2011:1384 advisory. The Sun 1.6.0 Java release includes the Sun Java 6 Runtime Environment and the Sun Java 6 Software Development Kit. This update fixes...

10CVSS7.6AI score0.96714EPSS
Exploits20References43
RedHat Linux
RedHat Linux
added 2011/10/19 5:17 p.m.2 views

OpenJDK: insufficient pack200 JAR files uncompress error checks (Runtime, 7057857)

Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown...

10CVSS7.4AI score0.03277EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2011/10/19 12:0 a.m.49 views

RHEL 5 / 6 : java-1.6.0-openjdk (RHSA-2011:1380)

The remote Redhat Enterprise Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2011:1380 advisory. These packages provide the OpenJDK 6 Java Runtime Environment and the OpenJDK 6 Software Development Kit. A flaw was found in the Java R...

10CVSS8.4AI score0.96714EPSS
Exploits20References31
RedHat Linux
RedHat Linux
added 2011/10/18 11:19 p.m.7 views

OpenJDK: insufficient pack200 JAR files uncompress error checks (Runtime, 7057857)

Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown...

10CVSS7.4AI score0.03277EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2010/12/02 12:0 a.m.56 views

SuSE 11 Security Update : IBM Java 6 (SAT Patch Number 2548)

This update of IBM Java 6 to SR 8 to fixes the following security issues : - Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE and Java for Business 6 Update 18, 5.0 Update 23, and 1.4.225 allows remote attackers to affect confidentiality via unknown vectors...

9.8CVSS9.8AI score0.96319EPSS
Exploits32References45
Check Point Advisories
Check Point Advisories
added 2010/08/03 12:0 a.m.38 views

Sun Java Runtime Environment Pack200 Decompression Integer Overflow (CVE-2008-5352; CVE-2009-1095)

There exists an integer overflow vulnerability in Sun Java Runtime Environment software. The vulnerability is due to insufficient validation while decompressing Pack200 jar.pack.gz files. A remote attacker can exploit this vulnerability by enticing a target user to open a crafted HTML file...

10CVSS7.6AI score0.07099EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2010/06/14 11:19 p.m.8 views

OpenJDK JAR "unpack200" must verify input parameters (6902299)

Unspecified vulnerability in the Pack200 component in Oracle Java SE and Java for Business 6 Update 18, 5.0, Update, and 23 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors...

7.5CVSS5.8AI score0.03839EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2010/04/29 5:49 p.m.6 views

OpenJDK JAR "unpack200" must verify input parameters (6902299)

Unspecified vulnerability in the Pack200 component in Oracle Java SE and Java for Business 6 Update 18, 5.0, Update, and 23 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors...

7.5CVSS5.8AI score0.03839EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2010/04/09 12:0 a.m.51 views

Ubuntu Update for openjdk-6 vulnerabilities USN-923-1

Ubuntu Update for Linux kernel vulnerabilities USN-923-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN9231.nasl 7965 2017-12-01 07:38:25Z santu $ Ubuntu Update for openjdk-6 vulnerabilities USN-923-1 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH,...

7.5CVSS0.3AI score0.96319EPSS
Exploits34References2
Prion
Prion
added 2010/04/01 4:30 p.m.17 views

Design/Logic Flaw

Unspecified vulnerability in the Pack200 component in Oracle Java SE and Java for Business 6 Update 18, 5.0, Update, and 23 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors...

7.5CVSS6.3AI score0.03839EPSS
Exploits0References33Affected Software2
Cvelist
Cvelist
added 2010/04/01 4:0 p.m.21 views

CVE-2010-0837

Unspecified vulnerability in the Pack200 component in Oracle Java SE and Java for Business 6 Update 18, 5.0, Update, and 23 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors...

7AI score0.03839EPSS
Exploits0References33
CVE
CVE
added 2010/04/01 4:0 p.m.99 views

CVE-2010-0837

CVE-2010-0837 describes an unspecified vulnerability in the Pack200 component of Oracle Java SE and Java for Business . Affects versions listed in the initial entry (e.g., 6 Update 18, 5.0 Update, 23, etc.). The description notes a remote attacker could affect confidentiality, integrity, and avai...

7.5CVSS6.8AI score0.03839EPSS
Exploits0References33Affected Software1
RedHat Linux
RedHat Linux
added 2010/04/01 12:21 a.m.8 views

OpenJDK JAR "unpack200" must verify input parameters (6902299)

Unspecified vulnerability in the Pack200 component in Oracle Java SE and Java for Business 6 Update 18, 5.0, Update, and 23 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors...

7.5CVSS5.8AI score0.03839EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2010/04/01 12:14 a.m.6 views

OpenJDK JAR "unpack200" must verify input parameters (6902299)

Unspecified vulnerability in the Pack200 component in Oracle Java SE and Java for Business 6 Update 18, 5.0, Update, and 23 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors...

7.5CVSS5.8AI score0.03839EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2010/04/01 12:0 a.m.23 views

CVE-2010-0837

Unspecified vulnerability in the Pack200 component in Oracle Java SE and Java for Business 6 Update 18, 5.0, Update, and 23 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors...

7.5CVSS5.9AI score0.03839EPSS
Exploits0References3
Rows per page
Query Builder