Showing 1 - 9 of 9

CVE-2019-2697

Status Candidate

Overview

Vulnerability in the Java SE component of Oracle Java SE (subcomponent: 2D). Supported versions that are affected are Java SE: 7u211 and 8u202. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks of this vulnerability can result in takeover of Java SE. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets (in Java SE 8), that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 8.1 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H).

Related Files

Gentoo Linux Security Advisory 201908-10: Posted Aug 15, 2019; Authored by Gentoo | Site security.gentoo.org; Gentoo Linux Security Advisory 201908-10 - Multiple vulnerabilities have been found in Oracle's JDK and JRE software suites. Versions less than 1.8.0.202:1.8 are affected.; tags | advisory, vulnerability; systems | linux, gentoo; advisories | CVE-2018-13785, CVE-2018-3136, CVE-2018-3139, CVE-2018-3149, CVE-2018-3150, CVE-2018-3157, CVE-2018-3169, CVE-2018-3180, CVE-2018-3183, CVE-2018-3209, CVE-2018-3211, CVE-2018-3214, CVE-2019-2602, CVE-2019-2684, CVE-2019-2697, CVE-2019-2698, CVE-2019-2699; SHA-256 | 92eaf04612298402d520565d158aa4cdf0610a9748c3117d082bf3e1de650ebc; Download | Favorite | View

Red Hat Security Advisory 2019-1325-01: Posted Jun 4, 2019; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2019-1325-01 - IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE 8 to version 8 SR5-FP35.; tags | advisory, java; systems | linux, redhat; advisories | CVE-2019-10245, CVE-2019-2602, CVE-2019-2684, CVE-2019-2697, CVE-2019-2698; SHA-256 | e16683958229fb0b1678eb8fbe891fdf0b7432c12f3a507f2b8837c20f4f5bf2; Download | Favorite | View

Red Hat Security Advisory 2019-1238-01: Posted May 16, 2019; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2019-1238-01 - IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE 8 to version 8 SR5-FP35. Issues addressed include a buffer overflow vulnerability.; tags | advisory, java, overflow; systems | linux, redhat; advisories | CVE-2018-11212, CVE-2018-12547, CVE-2018-12549, CVE-2019-10245, CVE-2019-2422, CVE-2019-2449, CVE-2019-2602, CVE-2019-2684, CVE-2019-2697, CVE-2019-2698; SHA-256 | ec20c7bb3400cda4ce362180081bb842b3098913284687804e41bd4ebf7d57c6; Download | Favorite | View

Red Hat Security Advisory 2019-1165-01: Posted May 15, 2019; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2019-1165-01 - IBM Java SE version 7 Release 1 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE 7 to version 7R1 SR4-FP45. Issues addressed include an out of bounds access vulnerability.; tags | advisory, java; systems | linux, redhat; advisories | CVE-2019-10245, CVE-2019-2602, CVE-2019-2684, CVE-2019-2697, CVE-2019-2698; SHA-256 | 3ca4fd4f9f478a2b6a679b05175601abfbb33115c365364a133134b19ec7f929; Download | Favorite | View

Red Hat Security Advisory 2019-1163-01: Posted May 14, 2019; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2019-1163-01 - IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE 8 to version 8 SR5-FP35. Issues addressed include an out-of-bounds access vulnerability.; tags | advisory, java; systems | linux, redhat; advisories | CVE-2019-10245, CVE-2019-2602, CVE-2019-2684, CVE-2019-2697, CVE-2019-2698; SHA-256 | e8c30388c72687c5cbf62929d5e42d7569f6a9656326d4d1956f6ef95c1888cf; Download | Favorite | View

Red Hat Security Advisory 2019-1166-01: Posted May 14, 2019; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2019-1166-01 - IBM Java SE version 7 Release 1 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE 7 to version 7R1 SR4-FP45. Issues addressed include an out-of-bounds access vulnerability.; tags | advisory, java; systems | linux, redhat; advisories | CVE-2019-10245, CVE-2019-2602, CVE-2019-2684, CVE-2019-2697, CVE-2019-2698; SHA-256 | 25a28796ceb8baef140e9740a0e1ee4263d4e4a4853b84e58e3ca153c13f14e5; Download | Favorite | View

Red Hat Security Advisory 2019-1164-01: Posted May 14, 2019; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2019-1164-01 - IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE 8 to version 8 SR5-FP35. Issues addressed include an out-of-bounds access vulnerability.; tags | advisory, java; systems | linux, redhat; advisories | CVE-2019-10245, CVE-2019-2602, CVE-2019-2684, CVE-2019-2697, CVE-2019-2698; SHA-256 | 34c844a1a2dfb06af1320b7e411354c4f6cb106ac4c2d3a110868c64368f15a8; Download | Favorite | View

Ubuntu Security Notice USN-3975-1: Posted May 14, 2019; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 3975-1 - It was discovered that the BigDecimal implementation in OpenJDK performed excessive computation when given certain values. An attacker could use this to cause a denial of service. Corwin de Boor and Robert Xiao discovered that the RMI registry implementation in OpenJDK did not properly select the correct skeleton class in some situations. An attacker could use this to possibly escape Java sandbox restrictions. Various other issues were also addressed.; tags | advisory, java, denial of service, registry; systems | linux, ubuntu; advisories | CVE-2019-2602, CVE-2019-2684, CVE-2019-2697, CVE-2019-2698; SHA-256 | 863b426d41559bd65c2c7727e970150e9f9d551307f68fe80ad79c08db7ac719; Download | Favorite | View

Oracle Java Runtime Environment sc_FindExtrema4 Heap Corruption: Posted Apr 17, 2019; Authored by Google Security Research, mjurczyk; A heap corruption was observed in Oracle Java Runtime Environment version 8u202 (latest at the time of this writing) while fuzz-testing the processing of TrueType, implemented in a proprietary t2k library.; tags | exploit, java; advisories | CVE-2019-2697; SHA-256 | cc1fdb072ca05f2a5b04c3cb9301fdc0fce66245b901c57e61aba6f76f5054ec; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 172 files
Ubuntu 47 files
Debian 22 files
LiquidWorm 11 files
Valentin Lobstein 11 files
nu11secur1ty 8 files
Apple 6 files
Google Security Research 5 files
tmrswrr 4 files
E1.Coders 4 files

File Archives

Systems

AIX (429)
Apple (2,078)
BSD (376)
CentOS (58)
Cisco (1,927)
Debian (7,014)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,467)
HPUX (880)
iOS (373)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (49,227)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (488)
RedHat (15,501)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,439)
UNIX (9,391)
UnixWare (187)
Windows (6,649)
Other

CVE-2019-2697

Overview

Related Files

File Archive:

April 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems