CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2024/09/11 12:49 p.m.•7 views

CLSA-2024-1726058957 java-1.8.0-openjdk: Fix of 6 CVEs

Upgrade to openjdk-shenandoah-jdk8u-shenandoah-jdk8u422-b05. That fixes following CVEs: - CVE-2024-21131: UTF8 size overflow - CVE-2024-21138: Infinite loop vunlerability in SymbolTable - CVE-2024-21140: Int overflow/underflow in Range Check Elimination RCE - CVE-2024-21144: Invalid header...

Tenable Nessus•added 2024/09/07 12:0 a.m.•27 views

SUSE SLES15: java-1_8_0-ibm / java-1_8_0-ibm-32bit / java-1_8_0-ibm-alsa / etc (SUSE-SU-2024:3162-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:3162-1 advisory. - Update to Java 8.0 Service Refresh 8 Fix Pack 30 bsc1228346 - CVE-2024-21147: Fixed an array index overflow in...

OSV•added 2024/09/06 10:18 a.m.•18 views

Exploits0References23

SUSE-SU-2024:3162-1 Security update for java-1_8_0-ibm

This update for java-180-ibm fixes the following issues: - Update to Java 8.0 Service Refresh 8 Fix Pack 30 bsc1228346 - CVE-2024-21147: Fixed an array index overflow in RangeCheckElimination. bsc1228052 - CVE-2024-21145: Fixed an out-of-bounds access in 2D image handling. bsc1228051 -...

Tenable Nessus•added 2024/09/05 12:0 a.m.•18 views

Exploits0References16

SUSE SLES15: java-1_8_0-openj9 / java-1_8_0-openj9-accessibility / etc (SUSE-SU-2024:3140-1)

The remote SUSE Linux SLES15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:3140-1 advisory. - Update to OpenJDK 8u422 build 05 with OpenJ9 0.46.0 virtual machine - CVE-2024-21147: Fixed an array index overflow in...

OSV•added 2024/09/04 10:16 a.m.•21 views

Exploits0References19

SUSE-SU-2024:3140-1 Security update for java-1_8_0-openj9

This update for java-180-openj9 fixes the following issues: - Update to OpenJDK 8u422 build 05 with OpenJ9 0.46.0 virtual machine - CVE-2024-21147: Fixed an array index overflow in RangeCheckElimination. bsc1228052 - CVE-2024-21145: Fixed an out-of-bounds access in 2D image handling. bsc1228051 -...

OSV•added 2024/08/21 5:3 p.m.•6 views

Exploits0References13

CLSA-2024-1724259788 java-1.8.0-openjdk: Fix of 6 CVEs

OSV•added 2024/08/21 4:59 p.m.•6 views

CLSA-2024-1724259539 java-1.8.0-openjdk: Fix of 6 CVEs

OSV•added 2024/08/21 4:54 p.m.•6 views

CLSA-2024-1724259268 java-1.8.0-openjdk: Fix of 6 CVEs

Ubuntu•added 2024/07/31 5:7 a.m.•77 views

USN-6932-1: OpenJDK 21 vulnerabilities

It was discovered that the Hotspot component of OpenJDK 21 was not properly bounding certain UTF-8 strings, which could lead to a buffer overflow. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. CVE-2024-21131 It was discovered that the Hotspot...

OSV•added 2024/07/31 5:6 a.m.•4 views

USN-6931-1 openjdk-17 vulnerabilities

It was discovered that the Hotspot component of OpenJDK 17 was not properly bounding certain UTF-8 strings, which could lead to a buffer overflow. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. CVE-2024-21131 It was discovered that the Hotspot...

Ubuntu•added 2024/07/31 5:6 a.m.•48 views

Exploits0References6

USN-6931-1: OpenJDK 17 vulnerabilities

Ubuntu•added 2024/07/31 5:4 a.m.•366 views

USN-6930-1: OpenJDK 11 vulnerabilities

It was discovered that the Hotspot component of OpenJDK 11 was not properly bounding certain UTF-8 strings, which could lead to a buffer overflow. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. CVE-2024-21131 It was discovered that the Hotspot...

Ubuntu•added 2024/07/31 3:41 a.m.•412 views

USN-6929-1: OpenJDK 8 vulnerabilities

It was discovered that the Hotspot component of OpenJDK 8 was not properly bounding certain UTF-8 strings, which could lead to a buffer overflow. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. CVE-2024-21131 It was discovered that the Hotspot...

OpenVAS•added 2024/07/31 12:0 a.m.•27 views

Ubuntu: Security Advisory (USN-6929-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Tenable Nessus•added 2024/07/31 12:0 a.m.•36 views

Exploits0References2

SUSE SLED15: java-17-openjdk / java-17-openjdk-demo / java-17-openjdk-devel / etc (SUSE-SU-2024:2628-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:2628-1 advisory. Updated to version 17.0.12+7 July 2024 CPU: - CVE-2024-21131: Fixed a potential UTF8 size overfl...

7.4CVSS6.8AI score0.01257EPSS

Exploits0References17

Tenable Nessus•added 2024/07/31 12:0 a.m.•21 views

Ubuntu 20.04 LTS / 22.04 LTS / 24.04 LTS : OpenJDK 21 vulnerabilities (USN-6932-1)

The remote Ubuntu 20.04 LTS / 22.04 LTS / 24.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6932-1 advisory. It was discovered that the Hotspot component of OpenJDK 21 was not properly performing bounds when handling certain UTF-8 strings...

7.4CVSS7.7AI score0.01257EPSS

Exploits0References6

OSV•added 2024/07/30 7:11 a.m.•29 views

SUSE-SU-2024:2629-1 Security update for java-11-openjdk

This update for java-11-openjdk fixes the following issues: Updated to version 11.0.24+8 July 2024 CPU: - CVE-2024-21131: Fixed a potential UTF8 size overflow bsc1228046. - CVE-2024-21138: Fixed an infinite loop due to excessive symbol length bsc1228047. - CVE-2024-21140: Fixed a pre-loop limit...