Search CVE reports
181 – 190 of 428 results
CVE-2018-2964
Medium priorityVulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). Supported versions that are affected are Java SE: 8u172 and 10.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with...
5 affected packages
openjdk-6, openjdk-7, openjdk-8, openjdk-9, openjdk-lts
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| openjdk-6 | — | — | — | Not in release | Not in release |
| openjdk-7 | — | — | — | Not in release | Not in release |
| openjdk-8 | — | — | — | Not affected | Not affected |
| openjdk-9 | — | — | — | Not in release | Not affected |
| openjdk-lts | — | — | — | Not affected | Not in release |
CVE-2018-2942
Medium priorityVulnerability in the Java SE component of Oracle Java SE (subcomponent: Windows DLL). Supported versions that are affected are Java SE: 7u181 and 8u172. Difficult to exploit vulnerability allows unauthenticated attacker with...
6 affected packages
icedtea-web, openjdk-6, openjdk-7, openjdk-8, openjdk-9, openjdk-lts
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| icedtea-web | — | — | — | Not affected | Not affected |
| openjdk-6 | — | — | — | Not in release | Not in release |
| openjdk-7 | — | — | — | Not in release | Not in release |
| openjdk-8 | — | — | — | Not affected | Not affected |
| openjdk-9 | — | — | — | Not in release | Not affected |
| openjdk-lts | — | — | — | Not affected | Not in release |
CVE-2018-2940
Medium priorityVulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 6u191, 7u181, 8u172 and 10.0.1; Java SE Embedded: 8u171. Easily exploitable...
5 affected packages
openjdk-6, openjdk-7, openjdk-8, openjdk-9, openjdk-lts
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| openjdk-6 | — | — | — | Not in release | Not in release |
| openjdk-7 | — | — | — | Not in release | Not in release |
| openjdk-8 | — | — | — | Not affected | Not affected |
| openjdk-9 | — | — | — | Not in release | Not affected |
| openjdk-lts | — | — | — | Not affected | Not in release |
CVE-2018-2938
Medium priorityVulnerability in the Java SE component of Oracle Java SE (subcomponent: Java DB). Supported versions that are affected are Java SE: 6u191, 7u181 and 8u172. Difficult to exploit vulnerability allows unauthenticated attacker with...
5 affected packages
icedtea-web, openjdk-6, openjdk-7, openjdk-8, openjdk-9
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| icedtea-web | — | Not affected | Not affected | Not affected | Not affected |
| openjdk-6 | — | Not in release | Not in release | Not in release | Not in release |
| openjdk-7 | — | Not in release | Not in release | Not in release | Not in release |
| openjdk-8 | — | Not affected | Not affected | Not affected | Not affected |
| openjdk-9 | — | Not in release | Not in release | Not in release | Not affected |
CVE-2018-2952
Medium prioritySome fixes available 12 of 14
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Concurrency). Supported versions that are affected are Java SE: 6u191, 7u181, 8u172 and 10.0.1; Java SE Embedded: 8u171; JRockit:...
5 affected packages
openjdk-6, openjdk-7, openjdk-8, openjdk-9, openjdk-lts
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| openjdk-6 | — | Not in release | Not in release | Not in release | Not in release |
| openjdk-7 | — | Not in release | Not in release | Not in release | Not in release |
| openjdk-8 | — | Not affected | Not affected | Fixed | Fixed |
| openjdk-9 | — | Not in release | Not in release | Not in release | Not affected |
| openjdk-lts | — | Fixed | Fixed | Fixed | Not in release |
CVE-2018-12438
Low priorityThe Elliptic Curve Cryptography library (aka sunec or libsunec) allows a memory-cache side-channel attack on ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. To discover an ECDSA key, the attacker needs...
3 affected packages
openjdk-7, openjdk-8, openjdk-lts
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| openjdk-7 | — | Not in release | Not in release | Not in release | Not in release |
| openjdk-8 | — | Not affected | Not affected | Not affected | Not affected |
| openjdk-lts | — | Not affected | Not affected | Not affected | Not in release |
CVE-2018-2811
Low priorityVulnerability in the Java SE component of Oracle Java SE (subcomponent: Install). Supported versions that are affected are Java SE: 8u162 and 10. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the...
1 affected packages
openjdk-8
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| openjdk-8 | — | — | — | — | Not affected |
CVE-2018-2815
Medium priorityVulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Serialization). Supported versions that are affected are Java SE: 6u181, 7u171, 8u162 and 10; Java SE Embedded: 8u161;...
4 affected packages
openjdk-10, openjdk-6, openjdk-7, openjdk-8
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| openjdk-10 | — | — | — | Not in release | Not in release |
| openjdk-6 | — | — | — | Not in release | Not in release |
| openjdk-7 | — | — | — | Not in release | Not in release |
| openjdk-8 | — | — | — | Fixed | Fixed |
CVE-2018-2814
Medium priorityVulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Hotspot). Supported versions that are affected are Java SE: 6u181, 7u171, 8u162 and 10; Java SE Embedded: 8u161. Difficult to...
3 affected packages
openjdk-6, openjdk-7, openjdk-8
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| openjdk-6 | — | — | — | Not in release | Not in release |
| openjdk-7 | — | — | — | Not in release | Not in release |
| openjdk-8 | — | — | — | Fixed | Fixed |
CVE-2018-2800
Medium priorityVulnerability in the Java SE, JRockit component of Oracle Java SE (subcomponent: RMI). Supported versions that are affected are Java SE: 6u181, 7u171 and 8u162; JRockit: R28.3.17. Difficult to exploit vulnerability allows...
3 affected packages
openjdk-6, openjdk-7, openjdk-8
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| openjdk-6 | — | — | — | Not in release | Not in release |
| openjdk-7 | — | — | — | Not in release | Not in release |
| openjdk-8 | — | — | — | Fixed | Fixed |