Search CVE reports
161 – 170 of 428 results
CVE-2019-2745
Medium priorityVulnerability in the Java SE component of Oracle Java SE (subcomponent: Security). Supported versions that are affected are Java SE: 7u221, 8u212 and 11.0.3. Difficult to exploit vulnerability allows unauthenticated attacker with...
3 affected packages
openjdk-7, openjdk-8, openjdk-lts
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| openjdk-7 | — | — | — | Not in release | Not in release |
| openjdk-8 | — | — | — | Fixed | Fixed |
| openjdk-lts | — | — | — | Fixed | Not in release |
CVE-2019-2699
Medium priorityVulnerability in the Java SE component of Oracle Java SE (subcomponent: Windows DLL). The supported version that is affected is Java SE: 8u202. Difficult to exploit vulnerability allows unauthenticated attacker with network access...
7 affected packages
icedtea-web, openjdk-12, openjdk-6, openjdk-7, openjdk-8...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| icedtea-web | — | — | — | Not affected | Not affected |
| openjdk-12 | — | — | — | Not in release | Not in release |
| openjdk-6 | — | — | — | Not in release | Not in release |
| openjdk-7 | — | — | — | Not in release | Not in release |
| openjdk-8 | — | — | — | Not affected | Not affected |
| openjdk-9 | — | — | — | Not in release | Not affected |
| openjdk-lts | — | — | — | Not affected | Not in release |
CVE-2019-2698
Medium priorityVulnerability in the Java SE component of Oracle Java SE (subcomponent: 2D). Supported versions that are affected are Java SE: 7u211 and 8u202. Difficult to exploit vulnerability allows unauthenticated attacker with network access...
7 affected packages
icedtea-web, openjdk-12, openjdk-6, openjdk-7, openjdk-8...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| icedtea-web | — | — | — | Not affected | Not affected |
| openjdk-12 | — | — | — | Not in release | Not in release |
| openjdk-6 | — | — | — | Not in release | Not in release |
| openjdk-7 | — | — | — | Not in release | Not in release |
| openjdk-8 | — | — | — | Fixed | Fixed |
| openjdk-9 | — | — | — | Not in release | Not affected |
| openjdk-lts | — | — | — | Not affected | Not in release |
CVE-2019-2697
Medium priorityVulnerability in the Java SE component of Oracle Java SE (subcomponent: 2D). Supported versions that are affected are Java SE: 7u211 and 8u202. Difficult to exploit vulnerability allows unauthenticated attacker with network access...
7 affected packages
icedtea-web, openjdk-12, openjdk-6, openjdk-7, openjdk-8...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| icedtea-web | — | — | — | Not affected | Not affected |
| openjdk-12 | — | — | — | Not in release | Not in release |
| openjdk-6 | — | — | — | Not in release | Not in release |
| openjdk-7 | — | — | — | Not in release | Not in release |
| openjdk-8 | — | — | — | Fixed | Fixed |
| openjdk-9 | — | — | — | Not in release | Not affected |
| openjdk-lts | — | — | — | Not affected | Not in release |
CVE-2019-2684
Medium prioritySome fixes available 7 of 8
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: RMI). Supported versions that are affected are Java SE: 7u211, 8u202, 11.0.2 and 12; Java SE Embedded: 8u201. Difficult to...
7 affected packages
icedtea-web, openjdk-12, openjdk-6, openjdk-7, openjdk-8...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| icedtea-web | — | Not affected | Not affected | Not affected | Not affected |
| openjdk-12 | — | Not in release | Not in release | Not in release | Not in release |
| openjdk-6 | — | Not in release | Not in release | Not in release | Not in release |
| openjdk-7 | — | Not in release | Not in release | Not in release | Not in release |
| openjdk-8 | — | Not affected | Not affected | Fixed | Fixed |
| openjdk-9 | — | Not in release | Not in release | Not in release | Not affected |
| openjdk-lts | — | Not affected | Not affected | Fixed | Not in release |
CVE-2019-2602
Low prioritySome fixes available 7 of 8
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 7u211, 8u202, 11.0.2 and 12; Java SE Embedded: 8u201. Easily exploitable...
7 affected packages
icedtea-web, openjdk-12, openjdk-6, openjdk-7, openjdk-8...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| icedtea-web | — | Not affected | Not affected | Not affected | Not affected |
| openjdk-12 | — | Not in release | Not in release | Not in release | Not in release |
| openjdk-6 | — | Not in release | Not in release | Not in release | Not in release |
| openjdk-7 | — | Not in release | Not in release | Not in release | Not in release |
| openjdk-8 | — | Not affected | Not affected | Fixed | Fixed |
| openjdk-9 | — | Not in release | Not in release | Not in release | Not affected |
| openjdk-lts | — | Not affected | Not affected | Fixed | Not in release |
CVE-2019-7317
Medium prioritySome fixes available 35 of 38
png_image_free in png.c in libpng 1.6.x before 1.6.37 has a use-after-free because png_image_free_function is called under png_safe_execute.
8 affected packages
firefox, libpng, libpng1.6, openjdk-12, openjdk-8...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| firefox | Fixed | Fixed | Fixed | Fixed | Fixed |
| libpng | Not in release | Not in release | Not in release | Not in release | Not affected |
| libpng1.6 | Not affected | Not affected | Not affected | Fixed | Vulnerable |
| openjdk-12 | Not in release | Not in release | Not in release | Not in release | Not in release |
| openjdk-8 | Not affected | Not affected | Not affected | Fixed | Fixed |
| openjdk-9 | Not in release | Not in release | Not in release | Not in release | Ignored |
| openjdk-lts | Not affected | Not affected | Not affected | Fixed | Not in release |
| thunderbird | Fixed | Fixed | Fixed | Fixed | Fixed |
CVE-2019-2449
Medium priorityVulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). The supported version that is affected is Java SE: 8u192. Difficult to exploit vulnerability allows unauthenticated attacker with network access...
6 affected packages
icedtea-web, openjdk-6, openjdk-7, openjdk-8, openjdk-9, openjdk-lts
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| icedtea-web | — | — | — | Not affected | Not affected |
| openjdk-6 | — | — | — | Not in release | Not in release |
| openjdk-7 | — | — | — | Not in release | Not in release |
| openjdk-8 | — | — | — | Not affected | Not affected |
| openjdk-9 | — | — | — | Not in release | Not affected |
| openjdk-lts | — | — | — | Not affected | Not in release |
CVE-2019-2426
Medium priorityVulnerability in the Java SE component of Oracle Java SE (subcomponent: Networking). Supported versions that are affected are Java SE: 7u201, 8u192 and 11.0.1; Java SE Embedded: 8u191. Difficult to exploit vulnerability allows...
6 affected packages
icedtea-web, openjdk-6, openjdk-7, openjdk-8, openjdk-9, openjdk-lts
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| icedtea-web | — | — | — | Not affected | Not affected |
| openjdk-6 | — | — | — | Not in release | Not in release |
| openjdk-7 | — | — | — | Not in release | Not in release |
| openjdk-8 | — | — | — | Not affected | Not affected |
| openjdk-9 | — | — | — | Not in release | Not affected |
| openjdk-lts | — | — | — | Not affected | Not in release |
CVE-2019-2422
Low priorityVulnerability in the Java SE component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 7u201, 8u192 and 11.0.1; Java SE Embedded: 8u191. Difficult to exploit vulnerability allows...
5 affected packages
openjdk-6, openjdk-7, openjdk-8, openjdk-9, openjdk-lts
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| openjdk-6 | — | Not in release | Not in release | Not in release | Not in release |
| openjdk-7 | — | Not in release | Not in release | Not in release | Not in release |
| openjdk-8 | — | Not affected | Not affected | Fixed | Fixed |
| openjdk-9 | — | Not in release | Not in release | Not in release | Not affected |
| openjdk-lts | — | Fixed | Fixed | Fixed | Not in release |