Lucene search
K

5 matches found

OSV
OSV
added 2025/07/31 1:3 p.m.13 views

CLSA-2025-1753967026 java-1.8.0-openjdk: Fix of 4 CVEs

Upgrade to openjdk-shenandoah-jdk8u-shenandoah-jdk8u462-b08 GA. That fixes following CVEs: - CVE-2025-30749: better Glyph drawing - CVE-2025-30754: enhance TLS protocol support - CVE-2025-30761: improve scripting supports - CVE-2025-50106: glyph out-of-memory access and crash...

8.1CVSS6.7AI score0.01058EPSS
Exploits1References1
OSV
OSV
added 2024/08/14 8:11 a.m.5 views

CLSA-2024-1723623068 java-1.8.0-openjdk: Fix of 6 CVEs

Upgrade to openjdk-shenandoah-jdk8u-shenandoah-jdk8u422-b05. That fixes following CVEs: - CVE-2024-21131: UTF8 size overflow - CVE-2024-21138: Infinite loop vunlerability in SymbolTable - CVE-2024-21140: Int overflow/underflow in Range Check Elimination RCE - CVE-2024-21144: Invalid header...

7.4CVSS6.7AI score0.01257EPSS
Exploits0References1
OSV
OSV
added 2022/08/04 8:13 p.m.8 views

CLSA-2022-1659643989 Fixed CVEs in java-1.8.0-openjdk: CVE-2022-21541, CVE-2022-21540, CVE-2022-34169

Upgrade to openjdk-shenandoah-jdk8u-shenandoah-jdk8u342-b07. That fixes following CVEs: - CVE-2022-34169: Integer truncation issue in Xalan-J - CVE-2022-21540: Class compilation issue - CVE-2022-21541: Improper restriction of MethodHandle.invokeBasic - Update tzdata requirement to 2022a to match...

7.5CVSS6.8AI score0.17673EPSS
Exploits2References1
OSV
OSV
added 2022/08/04 8:10 p.m.5 views

CLSA-2022-1659643853 Fixed CVEs in java-1.8.0-openjdk: CVE-2022-34169, CVE-2022-21540, CVE-2022-21541

Upgrade to openjdk-shenandoah-jdk8u-shenandoah-jdk8u342-b07. That fixes following CVEs: - CVE-2022-34169: Integer truncation issue in Xalan-J - CVE-2022-21540: Class compilation issue - CVE-2022-21541: Improper restriction of MethodHandle.invokeBasic - Update tzdata requirement to 2022a to match...

7.5CVSS6.8AI score0.17673EPSS
Exploits2References1
OSV
OSV
added 2022/06/02 12:56 p.m.5 views

CLSA-2022-1654174568 Fixed CVEs in java-1.8.0-openjdk: CVE-2022-21496, CVE-2022-21443, CVE-2022-21476, CVE-2022-21426, CVE-2022-21434

Upgrade to openjdk-shenandoah-jdk8u-shenandoah-jdk8u332-b09. That fixes following CVEs: - CVE-2022-21476: Defective secure validation in Apache Santuario - CVE-2022-21496: URI parsing inconsistencies - CVE-2022-21434: Improper object-to-string conversion in AnnotationInvocationHandler -...

7.5CVSS6.9AI score0.04046EPSS
Exploits0References1
Rows per page
Query Builder