Search CVE reports
681 – 690 of 724 results
Some fixes available 7 of 12
The SOCKS proxy implementation in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, allows remote attackers to discover the username of the account that invoked...
3 affected packages
openjdk-6, sun-java5, sun-java6
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| openjdk-6 | — | — | — | — |
| sun-java5 | — | — | — | — |
| sun-java6 | — | — | — | — |
Some fixes available 7 of 12
The audio system in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, does not prevent access to java.lang.System properties by (1) untrusted applets and (2) Java Web Start...
3 affected packages
openjdk-6, sun-java5, sun-java6
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| openjdk-6 | — | — | — | — |
| sun-java5 | — | — | — | — |
| sun-java6 | — | — | — | — |
The Network Security Services (NSS) library before 3.12.3, as used in Firefox; GnuTLS before 2.6.4 and 2.7.4; OpenSSL 0.9.8 through 0.9.8k; and other products support MD2 with X.509 certificates, which might allow remote attackers...
6 affected packages
gnutls12, gnutls13, gnutls26, nss, openjdk-6, openssl
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| gnutls12 | — | — | — | — |
| gnutls13 | — | — | — | — |
| gnutls26 | — | — | — | — |
| nss | — | — | — | — |
| openjdk-6 | — | — | — | — |
| openssl | — | — | — | — |
Some fixes available 11 of 23
The design of the W3C XML Signature Syntax and Processing (XMLDsig) recommendation, as implemented in products including (1) the Oracle Security Developer Tools component in Oracle Application Server 10.1.2.3, 10.1.3.4, and...
7 affected packages
mono, libreoffice, libxml-security-java, openjdk-6, openoffice.org...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| mono | — | — | — | — |
| libreoffice | — | — | — | — |
| libxml-security-java | — | — | — | — |
| openjdk-6 | — | — | — | — |
| openoffice.org | — | — | — | — |
| xml-security-c | — | — | — | — |
| xmlsec1 | — | — | — | — |
Algorithmic complexity vulnerability in the java.util.regex.Pattern.compile method in Sun Java Development Kit (JDK) before 1.6, when used with spring.jar in SpringSource Spring Framework 1.1.0 through 2.5.6 and 3.0.0.M1 through...
4 affected packages
java, openjdk-6, sun-java5, sun-java6
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| java | — | — | — | — |
| openjdk-6 | — | — | — | — |
| sun-java5 | — | — | — | — |
| sun-java6 | — | — | — | — |
Integer overflow in the PulseAudioTargetDataL class in src/java/org/classpath/icedtea/pulseaudio/PulseAudioTargetDataLine.java in Pulse-Java, as used in OpenJDK 1.6.0.0 and other products, allows remote attackers to cause a denial...
1 affected package
openjdk-6
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| openjdk-6 | — | — | — | — |
Some fixes available 5 of 11
cmsxform.c in LittleCMS (aka lcms or liblcms) 1.18, as used in OpenJDK and other products, allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted image that triggers...
2 affected packages
lcms, openjdk-6
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| lcms | — | — | — | — |
| openjdk-6 | — | — | — | — |
Some fixes available 4 of 9
The Java Plug-in in Java SE Development Kit (JDK) and Java Runtime Environment (JRE) 6 Update 12 and earlier, and 5.0 Update 17 and earlier, allows remote attackers to trick a user into trusting a signed applet via unknown vectors...
3 affected packages
openjdk-6, sun-java5, sun-java6
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| openjdk-6 | — | — | — | — |
| sun-java5 | — | — | — | — |
| sun-java6 | — | — | — | — |
Some fixes available 4 of 9
The Java Plug-in in Java SE Development Kit (JDK) and Java Runtime Environment (JRE) 6 Update 12, 11, and 10 does not properly parse crossdomain.xml files, which allows remote attackers to bypass intended access restrictions and...
3 affected packages
openjdk-6, sun-java5, sun-java6
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| openjdk-6 | — | — | — | — |
| sun-java5 | — | — | — | — |
| sun-java6 | — | — | — | — |
Some fixes available 4 of 9
The Java Plug-in in Java SE Development Kit (JDK) and Java Runtime Environment (JRE) 6 Update 12, 11, and 10 allows user-assisted remote attackers to cause a trusted applet to run in an older JRE version, which can be used to...
3 affected packages
openjdk-6, sun-java5, sun-java6
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| openjdk-6 | — | — | — | — |
| sun-java5 | — | — | — | — |
| sun-java6 | — | — | — | — |