UbuntuUSN-3734-1OpenJDK 8 vulnerability
3.7 Low
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
6.6 Medium
AI Score
Confidence
Low
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.002 Low
EPSS
Percentile
58.5%
Releases
- Ubuntu 16.04 ESM
Packages
- openjdk-8 - Open Source Java implementation
Details
It was discovered that the PatternSyntaxException class in OpenJDK
did not properly validate arguments passed to it. An attacker could
use this to possibly construct a class that caused a denial of service
(excessive memory consumption).
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 16.04 | noarch | openjdk-8-jdk | < 8u181-b13-0ubuntu0.16.04.1 | UNKNOWN |
| Ubuntu | 16.04 | noarch | openjdk-8-dbg | < 8u181-b13-0ubuntu0.16.04.1 | UNKNOWN |
| Ubuntu | 16.04 | noarch | openjdk-8-demo | < 8u181-b13-0ubuntu0.16.04.1 | UNKNOWN |
| Ubuntu | 16.04 | noarch | openjdk-8-doc | < 8u181-b13-0ubuntu0.16.04.1 | UNKNOWN |
| Ubuntu | 16.04 | noarch | openjdk-8-jdk-headless | < 8u181-b13-0ubuntu0.16.04.1 | UNKNOWN |
| Ubuntu | 16.04 | noarch | openjdk-8-jre | < 8u181-b13-0ubuntu0.16.04.1 | UNKNOWN |
| Ubuntu | 16.04 | noarch | openjdk-8-jre-headless | < 8u181-b13-0ubuntu0.16.04.1 | UNKNOWN |
| Ubuntu | 16.04 | noarch | openjdk-8-jre-jamvm | < 8u181-b13-0ubuntu0.16.04.1 | UNKNOWN |
| Ubuntu | 16.04 | noarch | openjdk-8-jre-zero | < 8u181-b13-0ubuntu0.16.04.1 | UNKNOWN |
| Ubuntu | 16.04 | noarch | openjdk-8-source | < 8u181-b13-0ubuntu0.16.04.1 | UNKNOWN |
References
Related
3.7 Low
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
6.6 Medium
AI Score
Confidence
Low
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.002 Low
EPSS
Percentile
58.5%