CVE search results

121 – 130 of 723 results

Detailed view

Sort by:

CVE-2016-0603

Negligible priority

Not affected

Unspecified vulnerability in the Java SE component in Oracle Java SE 6u111, 7u95, 8u71, and 8u72, when running on Windows, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related...

3 affected packages

openjdk-6, openjdk-7, openjdk-8

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
openjdk-6	—	—	—	—	—
openjdk-7	—	—	—	—	—
openjdk-8	—	—	—	—	—

CVE-2016-0475

Medium priority

Some fixes available 1 of 2

Unspecified vulnerability in the Java SE, Java SE Embedded, and JRockit components in Oracle Java SE 8u66; Java SE Embedded 8u65; and JRockit R28.3.8 allows remote attackers to affect confidentiality and integrity via unknown...

3 affected packages

openjdk-6, openjdk-7, openjdk-8

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
openjdk-6	—	—	—	—	Not in release
openjdk-7	—	—	—	—	Not in release
openjdk-8	—	—	—	—	Not affected

CVE-2016-0494

Medium priority

Some fixes available 12 of 15

Unspecified vulnerability in the Java SE and Java SE Embedded components in Oracle Java SE 6u105, 7u91, and 8u66 and Java SE Embedded 8u65 allows remote attackers to affect confidentiality, integrity, and availability via unknown...

4 affected packages

icu, openjdk-6, openjdk-7, openjdk-8

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
icu	—	—	—	—	Fixed
openjdk-6	—	—	—	—	Not in release
openjdk-7	—	—	—	—	Not in release
openjdk-8	—	—	—	—	Not affected

CVE-2016-0483

Medium priority

Some fixes available 9 of 10

Unspecified vulnerability in Oracle Java SE 6u105, 7u91, and 8u66; Java SE Embedded 8u65; and JRockit R28.3.8 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the...

3 affected packages

openjdk-6, openjdk-7, openjdk-8

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
openjdk-6	—	—	—	—	Not in release
openjdk-7	—	—	—	—	Not in release
openjdk-8	—	—	—	—	Not affected

CVE-2016-0466

Medium priority

Some fixes available 9 of 10

Unspecified vulnerability in the Java SE, Java SE Embedded, and JRockit components in Oracle Java SE 6u105, 7u91, and 8u66; Java SE Embedded 8u65; and JRockit R28.3.8 allows remote attackers to affect availability via vectors...

3 affected packages

openjdk-6, openjdk-7, openjdk-8

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
openjdk-6	—	—	—	—	Not in release
openjdk-7	—	—	—	—	Not in release
openjdk-8	—	—	—	—	Not affected

CVE-2016-0448

Medium priority

Some fixes available 9 of 10

Unspecified vulnerability in the Java SE and Java SE Embedded components in Oracle Java SE 6u105, 7u91, and 8u66, and Java SE Embedded 8u65 allows remote authenticated users to affect confidentiality via vectors related to JMX.

3 affected packages

openjdk-6, openjdk-7, openjdk-8

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
openjdk-6	—	—	—	—	Not in release
openjdk-7	—	—	—	—	Not in release
openjdk-8	—	—	—	—	Not affected

CVE-2016-0402

Medium priority

Some fixes available 9 of 10

Unspecified vulnerability in the Java SE and Java SE Embedded components in Oracle Java SE 6u105, 7u91, and 8u66 and Java SE Embedded 8u65 allows remote attackers to affect integrity via unknown vectors related to Networking.

3 affected packages

openjdk-6, openjdk-7, openjdk-8

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
openjdk-6	—	—	—	—	Not in release
openjdk-7	—	—	—	—	Not in release
openjdk-8	—	—	—	—	Not affected

CVE-2015-7575

Medium priority

Some fixes available 38 of 44

Mozilla Network Security Services (NSS) before 3.20.2, as used in Mozilla Firefox before 43.0.2 and Firefox ESR 38.x before 38.5.2, does not reject MD5 signatures in Server Key Exchange messages in TLS 1.2 Handshake Protocol...

12 affected packages

firefox, gnutls26, gnutls28, mbedtls, nss...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
firefox	—	—	—	Fixed	Fixed
gnutls26	—	—	—	Not in release	Not in release
gnutls28	—	—	—	Not affected	Not affected
mbedtls	—	—	—	Not affected	Not affected
nss	—	—	—	Not affected	Not affected
openjdk-6	—	—	—	Not in release	Not in release
openjdk-7	—	—	—	Not in release	Not in release
openjdk-8	—	—	—	Not affected	Not affected
openssl	—	—	—	Not affected	Not affected
openssl098	—	—	—	Not in release	Not in release
polarssl	—	—	—	Not in release	Not in release
thunderbird	—	—	—	Fixed	Fixed

CVE-2015-8472

Medium priority

Fixed

Buffer overflow in the png_set_PLTE function in libpng before 1.0.65, 1.1.x and 1.2.x before 1.2.55, 1.3.x, 1.4.x before 1.4.18, 1.5.x before 1.5.25, and 1.6.x before 1.6.20 allows remote attackers to cause a denial of service...

7 affected packages

chromium-browser, firefox, libpng, openjdk-6, openjdk-7...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
chromium-browser	—	—	—	—	—
firefox	—	—	—	—	—
libpng	—	—	—	—	—
openjdk-6	—	—	—	—	—
openjdk-7	—	—	—	—	—
openjdk-8	—	—	—	—	—
thunderbird	—	—	—	—	—

CVE-2015-4852

High priority

Some fixes available 1 of 37

The WLS Security component in Oracle WebLogic Server 10.3.6.0, 12.1.2.0, 12.1.3.0, and 12.2.1.0 allows remote attackers to execute arbitrary commands via a crafted serialized Java object in T3 protocol traffic to TCP port 7001,...

6 affected packages

libcommons-collections3-java, libcommons-collections4-java, libxalan2-java, openjdk-6, openjdk-7, openjdk-8

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
libcommons-collections3-java	Not affected	Not affected	Not affected	Not affected	Not affected
libcommons-collections4-java	Not affected	Not affected	Not affected	Not affected	Not affected
libxalan2-java	Not affected	Not affected	Not affected	Not affected	Not affected
openjdk-6	Not in release	Not in release	Not in release	Not in release	Not in release
openjdk-7	Not in release	Not in release	Not in release	Not in release	Not in release
openjdk-8	Ignored	Ignored	Ignored	Ignored	Ignored

Export to JSON

Results by page:

Search CVE reports