Search CVE reports
171 – 180 of 432 results
CVE-2019-7317
Medium prioritySome fixes available 37 of 40
png_image_free in png.c in libpng 1.6.x before 1.6.37 has a use-after-free because png_image_free_function is called under png_safe_execute.
8 affected packages
firefox, libpng, libpng1.6, openjdk-12, openjdk-8...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| firefox | Fixed | Fixed | Fixed | Fixed | Fixed |
| libpng | Not in release | Not in release | Not in release | Not in release | Not affected |
| libpng1.6 | Not affected | Not affected | Not affected | Fixed | Vulnerable |
| openjdk-12 | Not in release | Not in release | Not in release | Not in release | Not in release |
| openjdk-8 | Not affected | Not affected | Not affected | Fixed | Fixed |
| openjdk-9 | Not in release | Not in release | Not in release | Not in release | Ignored |
| openjdk-lts | Not affected | Not affected | Not affected | Fixed | Not in release |
| thunderbird | Fixed | Fixed | Fixed | Fixed | Fixed |
CVE-2019-2449
Medium priorityVulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). The supported version that is affected is Java SE: 8u192. Difficult to exploit vulnerability allows unauthenticated attacker with network access...
6 affected packages
icedtea-web, openjdk-6, openjdk-7, openjdk-8, openjdk-9, openjdk-lts
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| icedtea-web | — | — | — | Not affected | Not affected |
| openjdk-6 | — | — | — | Not in release | Not in release |
| openjdk-7 | — | — | — | Not in release | Not in release |
| openjdk-8 | — | — | — | Not affected | Not affected |
| openjdk-9 | — | — | — | Not in release | Not affected |
| openjdk-lts | — | — | — | Not affected | Not in release |
CVE-2019-2426
Medium priorityVulnerability in the Java SE component of Oracle Java SE (subcomponent: Networking). Supported versions that are affected are Java SE: 7u201, 8u192 and 11.0.1; Java SE Embedded: 8u191. Difficult to exploit vulnerability allows...
6 affected packages
icedtea-web, openjdk-6, openjdk-7, openjdk-8, openjdk-9, openjdk-lts
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| icedtea-web | — | — | — | Not affected | Not affected |
| openjdk-6 | — | — | — | Not in release | Not in release |
| openjdk-7 | — | — | — | Not in release | Not in release |
| openjdk-8 | — | — | — | Not affected | Not affected |
| openjdk-9 | — | — | — | Not in release | Not affected |
| openjdk-lts | — | — | — | Not affected | Not in release |
CVE-2019-2422
Low priorityVulnerability in the Java SE component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 7u201, 8u192 and 11.0.1; Java SE Embedded: 8u191. Difficult to exploit vulnerability allows...
5 affected packages
openjdk-6, openjdk-7, openjdk-8, openjdk-9, openjdk-lts
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| openjdk-6 | — | Not in release | Not in release | Not in release | Not in release |
| openjdk-7 | — | Not in release | Not in release | Not in release | Not in release |
| openjdk-8 | — | Not affected | Not affected | Fixed | Fixed |
| openjdk-9 | — | Not in release | Not in release | Not in release | Not affected |
| openjdk-lts | — | Fixed | Fixed | Fixed | Not in release |
CVE-2018-3211
Medium priorityVulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Serviceability). Supported versions that are affected are Java SE: 8u182 and 11; Java SE Embedded: 8u181. Easily exploitable vulnerability...
2 affected packages
openjdk-8, openjdk-lts
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| openjdk-8 | — | — | — | Not affected | Not affected |
| openjdk-lts | — | — | — | Not affected | Not in release |
CVE-2018-3214
Low priorityVulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Sound). Supported versions that are affected are Java SE: 6u201, 7u191 and 8u182; Java SE Embedded: 8u181; JRockit: R28.3.19....
3 affected packages
openjdk-7, openjdk-8, openjdk-lts
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| openjdk-7 | — | — | — | Not in release | Not in release |
| openjdk-8 | — | — | — | Fixed | Fixed |
| openjdk-lts | — | — | — | Not affected | Not in release |
CVE-2018-3183
Medium priorityVulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Scripting). Supported versions that are affected are Java SE: 8u182 and 11; Java SE Embedded: 8u181; JRockit: R28.3.19. Difficult...
2 affected packages
openjdk-8, openjdk-lts
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| openjdk-8 | — | — | — | Fixed | Fixed |
| openjdk-lts | — | — | — | Fixed | Not in release |
CVE-2018-3180
Medium priorityVulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JSSE). Supported versions that are affected are Java SE: 6u201, 7u191, 8u182 and 11; Java SE Embedded: 8u181; JRockit:...
3 affected packages
openjdk-7, openjdk-8, openjdk-lts
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| openjdk-7 | — | — | — | Not in release | Not in release |
| openjdk-8 | — | — | — | Fixed | Fixed |
| openjdk-lts | — | — | — | Fixed | Not in release |
CVE-2018-3169
Medium priorityVulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Hotspot). Supported versions that are affected are Java SE: 7u191, 8u182 and 11; Java SE Embedded: 8u181. Difficult to exploit vulnerability...
3 affected packages
openjdk-7, openjdk-8, openjdk-lts
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| openjdk-7 | — | — | — | Not in release | Not in release |
| openjdk-8 | — | — | — | Fixed | Fixed |
| openjdk-lts | — | — | — | Fixed | Not in release |
CVE-2018-3150
Medium priorityVulnerability in the Java SE component of Oracle Java SE (subcomponent: Utility). The supported version that is affected is Java SE: 11. Difficult to exploit vulnerability allows unauthenticated attacker with network access via...
2 affected packages
openjdk-8, openjdk-lts
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| openjdk-8 | — | — | — | Not affected | Not affected |
| openjdk-lts | — | — | — | Fixed | Not in release |