Showing 1 - 17 of 17

CVE-2022-39399

Status Candidate

Overview

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Networking). Supported versions that are affected are Oracle Java SE: 11.0.16.1, 17.0.4.1, 19; Oracle GraalVM Enterprise Edition: 20.3.7, 21.3.3 and 22.2.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 3.7 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N).

Related Files

Gentoo Linux Security Advisory 202401-25: Posted Jan 17, 2024; Authored by Gentoo | Site security.gentoo.org; Gentoo Linux Security Advisory 202401-25 - Multiple vulnerabilities have been discovered in OpenJDK, the worst of which can lead to remote code execution. Versions greater than or equal to 11.0.19_p7:11 are affected.; tags | advisory, remote, vulnerability, code execution; systems | linux, gentoo; advisories | CVE-2022-21540, CVE-2022-21541, CVE-2022-21549, CVE-2022-21618, CVE-2022-21619, CVE-2022-21624, CVE-2022-21626, CVE-2022-21628, CVE-2022-34169, CVE-2022-39399, CVE-2022-42920, CVE-2023-21830, CVE-2023-21835, CVE-2023-21843; SHA-256 | 0a4fe242d77ea01ee2a725ae008fbefb532aeaf7181a2f1427c642180897d42f; Download | Favorite | View

Debian Security Advisory 5335-1: Posted Feb 2, 2023; Authored by Debian | Site debian.org; Debian Linux Security Advisory 5335-1 - Several vulnerabilities have been discovered in the OpenJDK Java runtime, which may result in denial of service or spoofing.; tags | advisory, java, denial of service, spoof, vulnerability; systems | linux, debian; advisories | CVE-2022-21618, CVE-2022-21619, CVE-2022-21624, CVE-2022-21628, CVE-2022-39399, CVE-2023-21835, CVE-2023-21843; SHA-256 | 38f95ee57d63d0e8b884ef1127b64a2ad246bd3ea2088d67b53d2f1ae8e3140b; Download | Favorite | View

Debian Security Advisory 5331-1: Posted Jan 30, 2023; Authored by Debian | Site debian.org; Debian Linux Security Advisory 5331-1 - Several vulnerabilities have been discovered in the OpenJDK Java runtime, which may result in denial of service or spoofing.; tags | advisory, java, denial of service, spoof, vulnerability; systems | linux, debian; advisories | CVE-2022-21619, CVE-2022-21624, CVE-2022-21626, CVE-2022-21628, CVE-2022-39399, CVE-2023-21835, CVE-2023-21843; SHA-256 | 6cb75512f22c4b10076ab44d7a5c8a9b721c51a7afe86c31ff28c113d4b380f1; Download | Favorite | View

Ubuntu Security Notice USN-5719-1: Posted Nov 9, 2022; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 5719-1 - It was discovered that OpenJDK incorrectly handled long client hostnames. An attacker could possibly use this issue to cause the corruption of sensitive information. It was discovered that OpenJDK incorrectly randomized DNS port numbers. A remote attacker could possibly use this issue to perform spoofing attacks. It was discovered that OpenJDK did not limit the number of connections accepted from HTTP clients. An attacker could possibly use this issue to cause a denial of service.; tags | advisory, remote, web, denial of service, spoof; systems | linux, ubuntu; advisories | CVE-2022-21618, CVE-2022-21619, CVE-2022-21624, CVE-2022-21626, CVE-2022-21628, CVE-2022-39399; SHA-256 | ab9280f314ac81de4a3ed054866e30b013b2d1631d6819d87f2ce15b72e94064; Download | Favorite | View

Red Hat Security Advisory 2022-7051-01: Posted Oct 21, 2022; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2022-7051-01 - The OpenJDK 17 packages provide the OpenJDK 17 Java Runtime Environment and the OpenJDK 17 Java Software Development Kit. This release of the Red Hat build of OpenJDK 17 for Windows serves as a replacement for the Red Hat build of OpenJDK 17 and includes security and bug fixes, and enhancements. For further information, refer to the release notes linked to in the References section. Issues addressed include buffer overflow and randomization vulnerabilities.; tags | advisory, java, overflow, vulnerability; systems | linux, redhat, windows; advisories | CVE-2022-21618, CVE-2022-21619, CVE-2022-21624, CVE-2022-21626, CVE-2022-21628, CVE-2022-39399; SHA-256 | a080913060a11b7f8a978136654486737cc696ffe735cec2c2662f0a07265d2c; Download | Favorite | View

Red Hat Security Advisory 2022-6999-01: Posted Oct 21, 2022; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2022-6999-01 - The java-17-openjdk packages provide the OpenJDK 17 Java Runtime Environment and the OpenJDK 17 Java Software Development Kit. Issues addressed include buffer overflow and randomization vulnerabilities.; tags | advisory, java, overflow, vulnerability; systems | linux, redhat; advisories | CVE-2022-21618, CVE-2022-21619, CVE-2022-21624, CVE-2022-21626, CVE-2022-21628, CVE-2022-39399; SHA-256 | bc40090104c859da8e6d5501ca557aeaa6153e4eb9d6b87846bec7b21d332fa5; Download | Favorite | View

Red Hat Security Advisory 2022-7052-01: Posted Oct 21, 2022; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2022-7052-01 - The OpenJDK 11 packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit. This release of the Red Hat build of OpenJDK 11 for Windows serves as a replacement for the Red Hat build of OpenJDK 11 and includes security and bug fixes, and enhancements. For further information, refer to the release notes linked to in the References section. Issues addressed include buffer overflow and randomization vulnerabilities.; tags | advisory, java, overflow, vulnerability; systems | linux, redhat, windows; advisories | CVE-2022-21618, CVE-2022-21619, CVE-2022-21624, CVE-2022-21626, CVE-2022-21628, CVE-2022-39399; SHA-256 | e4e461602427282507cfff577a94be990baa5d76b9530c333fbf9ab5fc4bf7c0; Download | Favorite | View

Red Hat Security Advisory 2022-7054-01: Posted Oct 21, 2022; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2022-7054-01 - The OpenJDK 11 packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit. This release of the Red Hat build of OpenJDK 11 for portable Linux serves as a replacement for the Red Hat build of OpenJDK 11 and includes security and bug fixes, and enhancements. For further information, refer to the release notes linked to in the References section. Issues addressed include buffer overflow and randomization vulnerabilities.; tags | advisory, java, overflow, vulnerability; systems | linux, redhat; advisories | CVE-2022-21618, CVE-2022-21619, CVE-2022-21624, CVE-2022-21626, CVE-2022-21628, CVE-2022-39399; SHA-256 | e0c57bd453474b5a42d0d101fb7387b786a33d1491a29b829f55cad48d4ec1ca; Download | Favorite | View

Red Hat Security Advisory 2022-7053-01: Posted Oct 21, 2022; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2022-7053-01 - The OpenJDK 17 packages provide the OpenJDK 17 Java Runtime Environment and the OpenJDK 17 Java Software Development Kit. This release of the Red Hat build of OpenJDK 17 for portable Linux serves as a replacement for the Red Hat build of OpenJDK 17 and includes security and bug fixes, and enhancements. For further information, refer to the release notes linked to in the References section. Issues addressed include buffer overflow and randomization vulnerabilities.; tags | advisory, java, overflow, vulnerability; systems | linux, redhat; advisories | CVE-2022-21618, CVE-2022-21619, CVE-2022-21624, CVE-2022-21626, CVE-2022-21628, CVE-2022-39399; SHA-256 | 8da74c9d4b51d218ed29dcabd1fb89b005aac76453e75dff2d23bbd5d920fc1c; Download | Favorite | View

Red Hat Security Advisory 2022-7013-01: Posted Oct 21, 2022; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2022-7013-01 - The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit. Issues addressed include buffer overflow and randomization vulnerabilities.; tags | advisory, java, overflow, vulnerability; systems | linux, redhat; advisories | CVE-2022-21618, CVE-2022-21619, CVE-2022-21624, CVE-2022-21626, CVE-2022-21628, CVE-2022-39399; SHA-256 | 7ae1f452df3e1074f4938b55218bb6f0b7fb2f9a7d1c3df81f9683ce89422c92; Download | Favorite | View

Red Hat Security Advisory 2022-7008-01: Posted Oct 20, 2022; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2022-7008-01 - The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit. Issues addressed include buffer overflow and randomization vulnerabilities.; tags | advisory, java, overflow, vulnerability; systems | linux, redhat; advisories | CVE-2022-21618, CVE-2022-21619, CVE-2022-21624, CVE-2022-21626, CVE-2022-21628, CVE-2022-39399; SHA-256 | 362b493b16fffb9175878168a4cec96752df189db56b7b1850b2328cbd584be1; Download | Favorite | View

Red Hat Security Advisory 2022-7009-01: Posted Oct 20, 2022; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2022-7009-01 - The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit. Issues addressed include buffer overflow and randomization vulnerabilities.; tags | advisory, java, overflow, vulnerability; systems | linux, redhat; advisories | CVE-2022-21618, CVE-2022-21619, CVE-2022-21624, CVE-2022-21626, CVE-2022-21628, CVE-2022-39399; SHA-256 | 17a6855820a37dbf1b372fb6cbe7d6c310d0d61cedef1518f64960cfe98c61d4; Download | Favorite | View

Red Hat Security Advisory 2022-7011-01: Posted Oct 20, 2022; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2022-7011-01 - The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit. Issues addressed include buffer overflow and randomization vulnerabilities.; tags | advisory, java, overflow, vulnerability; systems | linux, redhat; advisories | CVE-2022-21618, CVE-2022-21619, CVE-2022-21624, CVE-2022-21626, CVE-2022-21628, CVE-2022-39399; SHA-256 | d371461479cf538c027433f6720d499e0a1f42fbf138427d2c5d7606baef72f3; Download | Favorite | View

Red Hat Security Advisory 2022-7010-01: Posted Oct 20, 2022; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2022-7010-01 - The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit. Issues addressed include buffer overflow and randomization vulnerabilities.; tags | advisory, java, overflow, vulnerability; systems | linux, redhat; advisories | CVE-2022-21618, CVE-2022-21619, CVE-2022-21624, CVE-2022-21626, CVE-2022-21628, CVE-2022-39399; SHA-256 | 26a235b42c76e560704e836554ed2edb827a28a50889fdb30e3c5a248ecfa53d; Download | Favorite | View

Red Hat Security Advisory 2022-7012-01: Posted Oct 20, 2022; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2022-7012-01 - The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit. Issues addressed include buffer overflow and randomization vulnerabilities.; tags | advisory, java, overflow, vulnerability; systems | linux, redhat; advisories | CVE-2022-21618, CVE-2022-21619, CVE-2022-21624, CVE-2022-21626, CVE-2022-21628, CVE-2022-39399; SHA-256 | 7ddcd79e06b9b9caa29d6c99ee7209ccb1c2bbbc92c878212a408698efd50ac9; Download | Favorite | View

Red Hat Security Advisory 2022-7001-01: Posted Oct 20, 2022; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2022-7001-01 - The java-17-openjdk packages provide the OpenJDK 17 Java Runtime Environment and the OpenJDK 17 Java Software Development Kit. Issues addressed include buffer overflow and randomization vulnerabilities.; tags | advisory, java, overflow, vulnerability; systems | linux, redhat; advisories | CVE-2022-21618, CVE-2022-21619, CVE-2022-21624, CVE-2022-21626, CVE-2022-21628, CVE-2022-39399; SHA-256 | 7d0bdef5160dba0ba6168260c5a0c462fd59fc74c637e91bc948af614f630b44; Download | Favorite | View

Red Hat Security Advisory 2022-7000-01: Posted Oct 20, 2022; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2022-7000-01 - The java-17-openjdk packages provide the OpenJDK 17 Java Runtime Environment and the OpenJDK 17 Java Software Development Kit. Issues addressed include buffer overflow and randomization vulnerabilities.; tags | advisory, java, overflow, vulnerability; systems | linux, redhat; advisories | CVE-2022-21618, CVE-2022-21619, CVE-2022-21624, CVE-2022-21626, CVE-2022-21628, CVE-2022-39399; SHA-256 | 1eec6e6b0af1da4d64dd9d97581cd69d831f2ad8f47648ebe0c3d83bac2e66c4; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 323 files
Ubuntu 71 files
Debian 21 files
LiquidWorm 12 files
Gentoo 8 files
Apple 6 files
Google Security Research 4 files
Spencer McIntyre 3 files
Jann Horn 3 files
Alter Prime 3 files

File Archives

Systems

AIX (430)
Apple (2,132)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,172)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,607)
HPUX (881)
iOS (395)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (52,112)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (17,459)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (10,018)
UNIX (9,482)
UnixWare (188)
Windows (6,785)
Other

CVE-2022-39399

Overview

Related Files

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems