Executive Summary

Summary
Titleopenjdk-8 security update
Informations
NameDSA-4410First vendor Publication2019-03-20
VendorDebianLast vendor Modification2019-03-20
Severity (Vendor) N/ARevision1

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:N/C:P/I:N/A:N)
Cvss Base Score4.3Attack RangeNetwork
Cvss Impact Score2.9Attack ComplexityMedium
Cvss Expoit Score8.6AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

A memory disclosure vulnerability was discovered in OpenJDK, an implementation of the Oracle Java platform, resulting in information disclosure or bypass of sandbox restrictions. For the stable distribution (stretch), this problem has been fixed in version 8u212-b01-1~deb9u1.

We recommend that you upgrade your openjdk-8 packages.

For the detailed security status of openjdk-8 please refer to its security tracker page at: https://security-tracker.debian.org/tracker/openjdk-8

Original Source

Url : http://www.debian.org/security/2019/dsa-4410

CWE : Common Weakness Enumeration

%idName
100 %CWE-284Access Control (Authorization) Issues

CPE : Common Platform Enumeration

TypeDescriptionCount
Application1
Application1
Application2
Application3
Application3
Application1
Os4
Os2
Os1
Os2
Os3
Os1
Os1
Os1
Os2

Alert History

If you want to see full details history, please login or register.
0
DateInformations
2019-03-21 00:18:41
  • First insertion