Download
| Alert*
oval:org.secpod.oval:def:1000680
The remote host is missing a patch 152927-02 containing a security fix. For more information please visit the reference link. oval:org.secpod.oval:def:89003262 This update for java-1_7_1-ibm to version 7.1.4.40 fixes the following issues: Security issues fixed: - CVE-2019-2422: Fixed a memory disclosure in FileChannelImpl . - CVE-2018-11212: Fixed an issue in alloc_sarray function in jmemmgr.c . More information: https://developer.ibm.com/javasdk/support/s ... oval:org.secpod.oval:def:89003340 This update for java-1_7_0-openjdk fixes the following issues: Update to 2.6.18 - OpenJDK 7u221 Security issues fixed: - CVE-2019-2602: Fixed flaw inside BigDecimal implementation . - CVE-2019-2684: Fixed flaw inside the RMI registry implementation . - CVE-2019-2698: Fixed out of bounds access fla ... oval:org.secpod.oval:def:505560 IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE 8 to version 8 SR5-FP30. Security Fix: * IBM JDK: buffer overflow in jio_snprintf and jio_vsnprintf * IBM JDK: missing null check when accelerating Unsafe call ... oval:org.secpod.oval:def:1700259 The cjpeg utility in libjpeg allows remote attackers to cause a denial of service or execute arbitrary code via a crafted file.A divide by zero vulnerability has been discovered in libjpeg-turbo in alloc_sarray function of jmemmgr.c file. An attacker could use this vulnerability to cause a denial o ... oval:org.secpod.oval:def:505446 IBM Java SE version 7 Release 1 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE 7 to version 7R1 SR4-FP40. Security Fix: * IBM JDK: buffer overflow in jio_snprintf and jio_vsnprintf * OpenJDK: memory disclosure in FileChannelImpl ... oval:org.secpod.oval:def:505529 IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE 8 to version 8 SR5-FP30. Security Fix: * IBM JDK: buffer overflow in jio_snprintf and jio_vsnprintf * IBM JDK: missing null check when accelerating Unsafe call ... oval:org.secpod.oval:def:1000599 The remote host is missing a patch 152923-11 containing a security fix. For more information please visit the reference link. oval:org.secpod.oval:def:505927 IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE 8 to version 8 SR5-FP35. Security Fix: * IBM JDK: buffer overflow in jio_snprintf and jio_vsnprintf * IBM JDK: missing null check when accelerating Unsafe call ... oval:org.secpod.oval:def:1000757 The remote host is missing a patch 152927-01 containing a security fix. For more information please visit the reference link. oval:org.secpod.oval:def:1601046 The cjpeg utility in libjpeg allows remote attackers to cause a denial of service or execute arbitrary code via a crafted file.libjpeg 9c has a large loop because read_pixel in rdtarga.c mishandles EOF.An out-of-bounds read vulnerability has been discovered in libjpeg-turbo when reading one row of ... oval:org.secpod.oval:def:89003374 This update for java-1_8_0-ibm to version 8.0.5.30 fixes the following issues: Security issues fixed: - CVE-2019-2422: Fixed a memory disclosure in FileChannelImpl . - CVE-2018-11212: Fixed an issue in alloc_sarray function in jmemmgr.c . - CVE-2018-1890: Fixed a local privilege escalation via RPATH ... oval:org.secpod.oval:def:51070 libjpeg-turbo: library for handling JPEG files libjpeg-turbo could be made to crash or run programs as your login if it opened a specially crafted file. oval:org.secpod.oval:def:704151 libjpeg-turbo: library for handling JPEG files libjpeg-turbo could be made to crash or run programs as your login if it opened a specially crafted file. oval:org.secpod.oval:def:89003458 This update for java-1_7_1-ibm to version 7.1.4.40 fixes the following issues: Security issues fixed: - CVE-2019-2422: Fixed a memory disclosure in FileChannelImpl . - CVE-2018-11212: Fixed an issue in alloc_sarray function in jmemmgr.c . More information: https://developer.ibm.com/javasdk/support/s ... oval:org.secpod.oval:def:503276 The libjpeg-turbo packages contain a library of functions for manipulating JPEG images. They also contain simple client programs for accessing the libjpeg functions. These packages provide the same functionality and API as libjpeg but with better performance. Security Fix: * libjpeg: null pointer de ... oval:org.secpod.oval:def:50579 The host is installed with Oracle Java SE through 7u201, 8u192 or 11.0.1 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to handle vectors related to unspecified vectors. Successful exploitation allows remote attackers to execute code without u ... oval:org.secpod.oval:def:1700162 A divide by zero vulnerability has been discovered in libjpeg-turbo in alloc_sarray function of jmemmgr.c file. An attacker could use this vulnerability to cause a denial of service via a crafted file. oval:org.secpod.oval:def:1000787 The remote host is missing a patch 152928-02 containing a security fix. For more information please visit the reference link. oval:org.secpod.oval:def:1000666 The remote host is missing a patch 152926-11 containing a security fix. For more information please visit the reference link. oval:org.secpod.oval:def:50584 The host is installed with Oracle Java SE through 7u201, 8u192 or 11.0.1 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to handle vectors related to unspecified vectors. Successful exploitation allows remote attackers to execute code without u ... oval:org.secpod.oval:def:505302 IBM Java SE version 7 Release 1 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE 7 to version 7R1 SR4-FP40. Security Fix: * IBM JDK: buffer overflow in jio_snprintf and jio_vsnprintf * OpenJDK: memory disclosure in FileChannelImpl ... oval:org.secpod.oval:def:60347 The host is missing a patch containing a security fixes, which affects the following package(s): Java oval:org.secpod.oval:def:1000651 The remote host is missing a patch 152924-11 containing a security fix. For more information please visit the reference link. oval:org.secpod.oval:def:1000772 The remote host is missing a patch 152928-01 containing a security fix. For more information please visit the reference link. oval:org.secpod.oval:def:205271 The libjpeg-turbo packages contain a library of functions for manipulating JPEG images. They also contain simple client programs for accessing the libjpeg functions. These packages provide the same functionality and API as libjpeg but with better performance. Security Fix: * libjpeg: null pointer de ... oval:org.secpod.oval:def:1504154 [1.2.90-8] - Fix CVE-2018-14498 [1.2.90-7] - Fix CVE-2018-11212 - Fix CVE-2016-3616 , CVE-2018-11213 and CVE-2018-11214 - Fix CVE-2018-11813 oval:org.secpod.oval:def:505519 IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE 8 to version 8 SR5-FP30. Security Fix: * IBM JDK: buffer overflow in jio_snprintf and jio_vsnprintf * IBM JDK: missing null check when accelerating Unsafe call ... oval:org.secpod.oval:def:1000688 The remote host is missing a patch 152925-11 containing a security fix. For more information please visit the reference link. oval:org.secpod.oval:def:50263 The host is installed with Oracle Java SE through 7u201, 8u192 or 11.0.1 and is prone to an unspecified vulnerability. A flaw is present in the application, which fails to handle vectors related to ImageIO (libjpeg). Successful exploitation allows attackers to affect Availability. oval:org.secpod.oval:def:89003246 This update for java-1_8_0-ibm fixes the following issues: Update to Java 8.0 Service Refresh 5 Fix Pack 40. Security issues fixed: - CVE-2019-11771: IBM Security Update July 2019 - CVE-2019-11772: IBM Security Update July 2019 - CVE-2019-11775: IBM Security Update July 2019 - CVE-2019-4473: IBM ... oval:org.secpod.oval:def:89003057 This update for java-1_8_0-openjdk to version 8u212 fixes the following issues: Security issues fixed: - CVE-2019-2602: Better String parsing . - CVE-2019-2684: More dynamic RMI interactions . - CVE-2019-2698: Fuzzing TrueType fonts - setCurrGlyphID . - CVE-2019-2422: Better FileChannel . - CVE-2018 ... |