Search CVE reports
191 – 194 of 194 results
CVE-2018-2952
Medium prioritySome fixes available 12 of 14
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Concurrency). Supported versions that are affected are Java SE: 6u191, 7u181, 8u172 and 10.0.1; Java SE Embedded: 8u171; JRockit:...
5 affected packages
openjdk-6, openjdk-7, openjdk-8, openjdk-9, openjdk-lts
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| openjdk-6 | — | Not in release | Not in release | Not in release | Not in release |
| openjdk-7 | — | Not in release | Not in release | Not in release | Not in release |
| openjdk-8 | — | Not affected | Not affected | Fixed | Fixed |
| openjdk-9 | — | Not in release | Not in release | Not in release | Not affected |
| openjdk-lts | — | Fixed | Fixed | Fixed | Not in release |
CVE-2018-12438
Low priorityThe Elliptic Curve Cryptography library (aka sunec or libsunec) allows a memory-cache side-channel attack on ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. To discover an ECDSA key, the attacker needs...
3 affected packages
openjdk-7, openjdk-8, openjdk-lts
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| openjdk-7 | — | Not in release | Not in release | Not in release | Not in release |
| openjdk-8 | — | Not affected | Not affected | Not affected | Not affected |
| openjdk-lts | — | Not affected | Not affected | Not affected | Not in release |
CVE-2018-2826
Medium priorityVulnerability in the Java SE component of Oracle Java SE (subcomponent: Libraries). The supported version that is affected is Java SE: 10. Difficult to exploit vulnerability allows unauthenticated attacker with network access via...
1 affected package
openjdk-lts
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| openjdk-lts | — | — | — | Fixed | Not in release |
CVE-2018-2825
Medium priorityVulnerability in the Java SE component of Oracle Java SE (subcomponent: Libraries). The supported version that is affected is Java SE: 10. Difficult to exploit vulnerability allows unauthenticated attacker with network access via...
1 affected package
openjdk-lts
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| openjdk-lts | — | — | — | Fixed | Not in release |