Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2018-1890 (GCVE-0-2018-1890)
Vulnerability from cvelistv5 – Published: 2019-03-11 22:00 – Updated: 2025-02-13 16:27
VLAI
EPSS
Summary
IBM SDK, Java Technology Edition Version 8 on the AIX platform uses absolute RPATHs which may facilitate code injection and privilege elevation by local users. IBM X-Force ID: 152081.
Severity
CWE
- Gain Privileges
Assigner
References
5 references
| URL | Tags |
|---|---|
| https://exchange.xforce.ibmcloud.com/vulnerabilit… | vdb-entryx_refsource_XF |
| https://www.ibm.com/support/docview.wss?uid=ibm10873042 | x_refsource_CONFIRM |
| https://www.ibm.com/support/docview.wss?uid=ibm10873332 | x_refsource_CONFIRM |
| https://www.ibm.com/support/docview.wss?uid=ibm10874750 | x_refsource_CONFIRM |
| http://www.securityfocus.com/bid/107448 | vdb-entryx_refsource_BID |
Impacted products
3 products
| Vendor | Product | Version | |
|---|---|---|---|
| IBM | WebSphere Application Server Patterns |
Affected:
1.0.0.0
Affected: 1.0.0.7 Affected: 2.2.0.0 Affected: 2.2.5.3 |
|
| IBM | WebSphere Application Server |
Affected:
7.0
Affected: 8.0 Affected: 8.5 Affected: 9.0 Affected: Liberty |
|
| IBM | Runtimes for Java Technology |
Date Public
2019-03-01 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T04:14:38.919Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "ibm-sdk-cve20181890-code-exec(152081)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/152081"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://www.ibm.com/support/docview.wss?uid=ibm10873042"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://www.ibm.com/support/docview.wss?uid=ibm10873332"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://www.ibm.com/support/docview.wss?uid=ibm10874750"
},
{
"name": "107448",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/107448"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "WebSphere Application Server Patterns",
"vendor": "IBM",
"versions": [
{
"status": "affected",
"version": "1.0.0.0"
},
{
"status": "affected",
"version": "1.0.0.7"
},
{
"status": "affected",
"version": "2.2.0.0"
},
{
"status": "affected",
"version": "2.2.5.3"
}
]
},
{
"product": "WebSphere Application Server",
"vendor": "IBM",
"versions": [
{
"status": "affected",
"version": "7.0"
},
{
"status": "affected",
"version": "8.0"
},
{
"status": "affected",
"version": "8.5"
},
{
"status": "affected",
"version": "9.0"
},
{
"status": "affected",
"version": "Liberty"
}
]
},
{
"defaultStatus": "affected",
"product": "Runtimes for Java Technology",
"vendor": "IBM"
}
],
"datePublic": "2019-03-01T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "IBM SDK, Java Technology Edition Version 8 on the AIX platform uses absolute RPATHs which may facilitate code injection and privilege elevation by local users. IBM X-Force ID: 152081."
}
],
"metrics": [
{
"cvssV3_0": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"exploitCodeMaturity": "UNPROVEN",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"remediationLevel": "OFFICIAL_FIX",
"reportConfidence": "CONFIRMED",
"scope": "CHANGED",
"temporalScore": 4.9,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/A:L/AC:H/AV:L/C:L/I:L/PR:N/S:C/UI:N/E:U/RC:C/RL:O",
"version": "3.0"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Gain Privileges",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-09-05T03:01:03.000Z",
"orgId": "9a959283-ebb5-44b6-b705-dcc2bbced522",
"shortName": "ibm"
},
"references": [
{
"name": "ibm-sdk-cve20181890-code-exec(152081)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/152081"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://www.ibm.com/support/docview.wss?uid=ibm10873042"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://www.ibm.com/support/docview.wss?uid=ibm10873332"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://www.ibm.com/support/docview.wss?uid=ibm10874750"
},
{
"name": "107448",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/107448"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "psirt@us.ibm.com",
"DATE_PUBLIC": "2019-03-01T00:00:00",
"ID": "CVE-2018-1890",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "WebSphere Application Server Patterns",
"version": {
"version_data": [
{
"version_value": "1.0.0.0"
},
{
"version_value": "1.0.0.7"
},
{
"version_value": "2.2.0.0"
},
{
"version_value": "2.2.5.3"
}
]
}
},
{
"product_name": "WebSphere Application Server",
"version": {
"version_data": [
{
"version_value": "7.0"
},
{
"version_value": "8.0"
},
{
"version_value": "8.5"
},
{
"version_value": "9.0"
},
{
"version_value": "Liberty"
}
]
}
},
{
"product_name": "Runtimes for Java Technology",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "IBM"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "IBM SDK, Java Technology Edition Version 8 on the AIX platform uses absolute RPATHs which may facilitate code injection and privilege elevation by local users. IBM X-Force ID: 152081."
}
]
},
"impact": {
"cvssv3": {
"BM": {
"A": "L",
"AC": "H",
"AV": "L",
"C": "L",
"I": "L",
"PR": "N",
"S": "C",
"UI": "N"
},
"TM": {
"E": "U",
"RC": "C",
"RL": "O"
}
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Gain Privileges"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "ibm-sdk-cve20181890-code-exec(152081)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/152081"
},
{
"name": "https://www.ibm.com/support/docview.wss?uid=ibm10873042",
"refsource": "CONFIRM",
"url": "https://www.ibm.com/support/docview.wss?uid=ibm10873042"
},
{
"name": "https://www.ibm.com/support/docview.wss?uid=ibm10873332",
"refsource": "CONFIRM",
"url": "https://www.ibm.com/support/docview.wss?uid=ibm10873332"
},
{
"name": "https://www.ibm.com/support/docview.wss?uid=ibm10874750",
"refsource": "CONFIRM",
"url": "https://www.ibm.com/support/docview.wss?uid=ibm10874750"
},
{
"name": "107448",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/107448"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "9a959283-ebb5-44b6-b705-dcc2bbced522",
"assignerShortName": "ibm",
"cveId": "CVE-2018-1890",
"datePublished": "2019-03-11T22:00:00.000Z",
"dateReserved": "2017-12-13T00:00:00.000Z",
"dateUpdated": "2025-02-13T16:27:18.602Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2018-1890",
"date": "2026-05-27",
"epss": "0.00074",
"percentile": "0.22404"
},
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:sdk:8.0:*:*:*:java_technology:*:*:*\", \"matchCriteriaId\": \"6DEFC54D-3C43-499D-8F5E-75A02E5A1DF2\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"IBM SDK, Java Technology Edition Version 8 on the AIX platform uses absolute RPATHs which may facilitate code injection and privilege elevation by local users. IBM X-Force ID: 152081.\"}, {\"lang\": \"es\", \"value\": \"IBM SDK, Java Technology Edition, en su versi\\u00f3n 8 en la plataforma AIX, utiliza RPATHS absolutas, lo que podr\\u00eda facilitar una inyecci\\u00f3n de c\\u00f3digo y un escalado de privilegios por usuarios locales. IBM X-Force ID: 152081.\"}]",
"id": "CVE-2018-1890",
"lastModified": "2024-11-21T04:00:32.843",
"metrics": "{\"cvssMetricV30\": [{\"source\": \"psirt@us.ibm.com\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.0\", \"vectorString\": \"CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:L\", \"baseScore\": 5.6, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"CHANGED\", \"confidentialityImpact\": \"LOW\", \"integrityImpact\": \"LOW\", \"availabilityImpact\": \"LOW\"}, \"exploitabilityScore\": 1.4, \"impactScore\": 3.7}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.0\", \"vectorString\": \"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\", \"baseScore\": 7.8, \"baseSeverity\": \"HIGH\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 1.8, \"impactScore\": 5.9}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:L/AC:L/Au:N/C:P/I:P/A:P\", \"baseScore\": 4.6, \"accessVector\": \"LOCAL\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"PARTIAL\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 3.9, \"impactScore\": 6.4, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
"published": "2019-03-11T22:29:00.343",
"references": "[{\"url\": \"http://www.securityfocus.com/bid/107448\", \"source\": \"psirt@us.ibm.com\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/152081\", \"source\": \"psirt@us.ibm.com\", \"tags\": [\"VDB Entry\", \"Vendor Advisory\"]}, {\"url\": \"https://www.ibm.com/support/docview.wss?uid=ibm10873042\", \"source\": \"psirt@us.ibm.com\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"https://www.ibm.com/support/docview.wss?uid=ibm10873332\", \"source\": \"psirt@us.ibm.com\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"https://www.ibm.com/support/docview.wss?uid=ibm10874750\", \"source\": \"psirt@us.ibm.com\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/107448\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/152081\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"VDB Entry\", \"Vendor Advisory\"]}, {\"url\": \"https://www.ibm.com/support/docview.wss?uid=ibm10873042\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"https://www.ibm.com/support/docview.wss?uid=ibm10873332\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"https://www.ibm.com/support/docview.wss?uid=ibm10874750\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}]",
"sourceIdentifier": "psirt@us.ibm.com",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-427\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2018-1890\",\"sourceIdentifier\":\"psirt@us.ibm.com\",\"published\":\"2019-03-11T22:29:00.343\",\"lastModified\":\"2024-11-21T04:00:32.843\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"IBM SDK, Java Technology Edition Version 8 on the AIX platform uses absolute RPATHs which may facilitate code injection and privilege elevation by local users. IBM X-Force ID: 152081.\"},{\"lang\":\"es\",\"value\":\"IBM SDK, Java Technology Edition, en su versi\u00f3n 8 en la plataforma AIX, utiliza RPATHS absolutas, lo que podr\u00eda facilitar una inyecci\u00f3n de c\u00f3digo y un escalado de privilegios por usuarios locales. IBM X-Force ID: 152081.\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"psirt@us.ibm.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:L\",\"baseScore\":5.6,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"LOW\",\"availabilityImpact\":\"LOW\"},\"exploitabilityScore\":1.4,\"impactScore\":3.7},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":7.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:L/Au:N/C:P/I:P/A:P\",\"baseScore\":4.6,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":3.9,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-427\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:sdk:8.0:*:*:*:java_technology:*:*:*\",\"matchCriteriaId\":\"6DEFC54D-3C43-499D-8F5E-75A02E5A1DF2\"}]}]}],\"references\":[{\"url\":\"http://www.securityfocus.com/bid/107448\",\"source\":\"psirt@us.ibm.com\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/152081\",\"source\":\"psirt@us.ibm.com\",\"tags\":[\"VDB Entry\",\"Vendor Advisory\"]},{\"url\":\"https://www.ibm.com/support/docview.wss?uid=ibm10873042\",\"source\":\"psirt@us.ibm.com\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://www.ibm.com/support/docview.wss?uid=ibm10873332\",\"source\":\"psirt@us.ibm.com\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://www.ibm.com/support/docview.wss?uid=ibm10874750\",\"source\":\"psirt@us.ibm.com\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/107448\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/152081\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"VDB Entry\",\"Vendor Advisory\"]},{\"url\":\"https://www.ibm.com/support/docview.wss?uid=ibm10873042\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://www.ibm.com/support/docview.wss?uid=ibm10873332\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://www.ibm.com/support/docview.wss?uid=ibm10874750\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]}]}}"
}
}
CERTFR-2019-AVI-251
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans les produits IBM. Certaines d'entre elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur, une exécution de code arbitraire à distance et un déni de service à distance.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| IBM | QRadar SIEM | IBM QRadar SIEM versions 7.3.0 à 7.3.2 Patch 1 | ||
| IBM | WebSphere | WebSphere Application Server Liberty | ||
| IBM | WebSphere | WebSphere Application Server version 8.5 | ||
| IBM | WebSphere | WebSphere Extreme Scale versions 8.6. | ||
| IBM | WebSphere | WebSphere Application Server version 9.0 | ||
| IBM | WebSphere | WebSphere Extreme Scale version 8.6.0 |
References
| Title | Publication Time | Tags | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "IBM QRadar SIEM versions 7.3.0 \u00e0 7.3.2 Patch 1",
"product": {
"name": "QRadar SIEM",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "WebSphere Application Server Liberty",
"product": {
"name": "WebSphere",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "WebSphere Application Server version 8.5",
"product": {
"name": "WebSphere",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "WebSphere Extreme Scale versions 8.6.",
"product": {
"name": "WebSphere",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "WebSphere Application Server version 9.0",
"product": {
"name": "WebSphere",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "WebSphere Extreme Scale version 8.6.0",
"product": {
"name": "WebSphere",
"vendor": {
"name": "IBM",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2019-0199",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0199"
},
{
"name": "CVE-2019-2602",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2602"
},
{
"name": "CVE-2019-2426",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2426"
},
{
"name": "CVE-2019-0220",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0220"
},
{
"name": "CVE-2018-1890",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1890"
},
{
"name": "CVE-2018-12547",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12547"
},
{
"name": "CVE-2019-2684",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2684"
},
{
"name": "CVE-2019-0211",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0211"
}
],
"links": [],
"reference": "CERTFR-2019-AVI-251",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2019-06-06T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits IBM.\nCertaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer un\nprobl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur, une ex\u00e9cution de code\narbitraire \u00e0 distance et un d\u00e9ni de service \u00e0 distance.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 IBM ibm10883180 du 04 juin 2019",
"url": "https://www-01.ibm.com/support/docview.wss?uid=ibm10883180"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 IBM ibm10886317 du 31 mai 2019",
"url": "https://www-01.ibm.com/support/docview.wss?uid=ibm10886317"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 IBM ibm10882256 du 04 juin 2019",
"url": "https://www-01.ibm.com/support/docview.wss?uid=ibm10882256"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 IBM ibm10884066 du 31 mai 2019",
"url": "https://www-01.ibm.com/support/docview.wss?uid=ibm10884066"
}
]
}
CERTFR-2021-AVI-536
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans IBM InfoSphere. Elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance et une élévation de privilèges.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
References
| Title | Publication Time | Tags | |||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "InfoSphere Data Replication versions 11.4 sans le dernier correctif",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "InfoSphere Data Replication versions 11.3.3 sans le dernier correctif",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "InfoSphere Data Replication versions 11.4.0 sans le dernier correctif",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2019-4732",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-4732"
},
{
"name": "CVE-2019-4473",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-4473"
},
{
"name": "CVE-2019-11771",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-11771"
},
{
"name": "CVE-2018-1890",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1890"
},
{
"name": "CVE-2018-12547",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12547"
}
],
"links": [],
"reference": "CERTFR-2021-AVI-536",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2021-07-16T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans IBM InfoSphere.\nElles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code\narbitraire \u00e0 distance et une \u00e9l\u00e9vation de privil\u00e8ges.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans IBM InfoSphere",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 IBM 6472905 du 14 juillet 2021",
"url": "https://www.ibm.com/support/pages/node/6472905"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 IBM 6472799 du 14 juillet 2021",
"url": "https://www.ibm.com/support/pages/node/6472799"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 IBM 6472907 du 14 juillet 2021",
"url": "https://www.ibm.com/support/pages/node/6472907"
}
]
}
CERTFR-2019-AVI-251
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans les produits IBM. Certaines d'entre elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur, une exécution de code arbitraire à distance et un déni de service à distance.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| IBM | QRadar SIEM | IBM QRadar SIEM versions 7.3.0 à 7.3.2 Patch 1 | ||
| IBM | WebSphere | WebSphere Application Server Liberty | ||
| IBM | WebSphere | WebSphere Application Server version 8.5 | ||
| IBM | WebSphere | WebSphere Extreme Scale versions 8.6. | ||
| IBM | WebSphere | WebSphere Application Server version 9.0 | ||
| IBM | WebSphere | WebSphere Extreme Scale version 8.6.0 |
References
| Title | Publication Time | Tags | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "IBM QRadar SIEM versions 7.3.0 \u00e0 7.3.2 Patch 1",
"product": {
"name": "QRadar SIEM",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "WebSphere Application Server Liberty",
"product": {
"name": "WebSphere",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "WebSphere Application Server version 8.5",
"product": {
"name": "WebSphere",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "WebSphere Extreme Scale versions 8.6.",
"product": {
"name": "WebSphere",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "WebSphere Application Server version 9.0",
"product": {
"name": "WebSphere",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "WebSphere Extreme Scale version 8.6.0",
"product": {
"name": "WebSphere",
"vendor": {
"name": "IBM",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2019-0199",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0199"
},
{
"name": "CVE-2019-2602",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2602"
},
{
"name": "CVE-2019-2426",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2426"
},
{
"name": "CVE-2019-0220",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0220"
},
{
"name": "CVE-2018-1890",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1890"
},
{
"name": "CVE-2018-12547",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12547"
},
{
"name": "CVE-2019-2684",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2684"
},
{
"name": "CVE-2019-0211",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0211"
}
],
"links": [],
"reference": "CERTFR-2019-AVI-251",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2019-06-06T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits IBM.\nCertaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer un\nprobl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur, une ex\u00e9cution de code\narbitraire \u00e0 distance et un d\u00e9ni de service \u00e0 distance.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 IBM ibm10883180 du 04 juin 2019",
"url": "https://www-01.ibm.com/support/docview.wss?uid=ibm10883180"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 IBM ibm10886317 du 31 mai 2019",
"url": "https://www-01.ibm.com/support/docview.wss?uid=ibm10886317"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 IBM ibm10882256 du 04 juin 2019",
"url": "https://www-01.ibm.com/support/docview.wss?uid=ibm10882256"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 IBM ibm10884066 du 31 mai 2019",
"url": "https://www-01.ibm.com/support/docview.wss?uid=ibm10884066"
}
]
}
CERTFR-2021-AVI-536
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans IBM InfoSphere. Elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance et une élévation de privilèges.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
References
| Title | Publication Time | Tags | |||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "InfoSphere Data Replication versions 11.4 sans le dernier correctif",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "InfoSphere Data Replication versions 11.3.3 sans le dernier correctif",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "InfoSphere Data Replication versions 11.4.0 sans le dernier correctif",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2019-4732",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-4732"
},
{
"name": "CVE-2019-4473",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-4473"
},
{
"name": "CVE-2019-11771",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-11771"
},
{
"name": "CVE-2018-1890",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1890"
},
{
"name": "CVE-2018-12547",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12547"
}
],
"links": [],
"reference": "CERTFR-2021-AVI-536",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2021-07-16T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans IBM InfoSphere.\nElles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code\narbitraire \u00e0 distance et une \u00e9l\u00e9vation de privil\u00e8ges.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans IBM InfoSphere",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 IBM 6472905 du 14 juillet 2021",
"url": "https://www.ibm.com/support/pages/node/6472905"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 IBM 6472799 du 14 juillet 2021",
"url": "https://www.ibm.com/support/pages/node/6472799"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 IBM 6472907 du 14 juillet 2021",
"url": "https://www.ibm.com/support/pages/node/6472907"
}
]
}
CNVD-2019-07363
Vulnerability from cnvd - Published: 2019-03-17
VLAI
Title
IBM SDK, Java Technology Edition信息泄露漏洞
Description
IBM SDK, Java Technology Edition是美国IBM公司的一款用于Java应用程序开发的软件开发工具包。
基于AIX平台的IBM SDK, Java Technology Edition 8版本中存在安全漏洞。本地攻击者可利用该漏洞注入代码并提升权限。
Severity
低
Patch Name
IBM SDK, Java Technology Edition信息泄露漏洞的补丁
Patch Description
IBM SDK, Java Technology Edition是美国IBM公司的一款用于Java应用程序开发的软件开发工具包。
基于AIX平台的IBM SDK, Java Technology Edition 8版本中存在安全漏洞。本地攻击者可利用该漏洞注入代码并提升权限。目前,供应商发布了安全公告及相关补丁信息,修复了此漏洞。
Formal description
目前厂商已发布升级补丁以修复漏洞,补丁获取链接: http://www.ibm.com/support/docview.wss?uid=ibm10873332
Reference
http://www.ibm.com/support/docview.wss?uid=ibm10873332
https://www.securityfocus.com/bid/107300
Impacted products
| Name | ['Sun Microsystems, Inc. SDK 8', 'IBM Java Technology Edition 8'] |
|---|
{
"cves": {
"cve": [
{
"cveNumber": "CVE-2018-1890",
"cveUrl": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1890"
},
{
"cveNumber": "107300"
}
]
},
"description": "IBM SDK, Java Technology Edition\u662f\u7f8e\u56fdIBM\u516c\u53f8\u7684\u4e00\u6b3e\u7528\u4e8eJava\u5e94\u7528\u7a0b\u5e8f\u5f00\u53d1\u7684\u8f6f\u4ef6\u5f00\u53d1\u5de5\u5177\u5305\u3002\n\n\u57fa\u4e8eAIX\u5e73\u53f0\u7684IBM SDK, Java Technology Edition 8\u7248\u672c\u4e2d\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\u3002\u672c\u5730\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u6ce8\u5165\u4ee3\u7801\u5e76\u63d0\u5347\u6743\u9650\u3002",
"discovererName": "IBM",
"formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttp://www.ibm.com/support/docview.wss?uid=ibm10873332",
"isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
"number": "CNVD-2019-07363",
"openTime": "2019-03-17",
"patchDescription": "IBM SDK, Java Technology Edition\u662f\u7f8e\u56fdIBM\u516c\u53f8\u7684\u4e00\u6b3e\u7528\u4e8eJava\u5e94\u7528\u7a0b\u5e8f\u5f00\u53d1\u7684\u8f6f\u4ef6\u5f00\u53d1\u5de5\u5177\u5305\u3002\r\n\r\n\u57fa\u4e8eAIX\u5e73\u53f0\u7684IBM SDK, Java Technology Edition 8\u7248\u672c\u4e2d\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\u3002\u672c\u5730\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u6ce8\u5165\u4ee3\u7801\u5e76\u63d0\u5347\u6743\u9650\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
"patchName": "IBM SDK, Java Technology Edition\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\u7684\u8865\u4e01",
"products": {
"product": [
"Sun Microsystems, Inc. SDK 8",
"IBM Java Technology Edition 8"
]
},
"referenceLink": "http://www.ibm.com/support/docview.wss?uid=ibm10873332\r\nhttps://www.securityfocus.com/bid/107300",
"serverity": "\u4f4e",
"submitTime": "2019-03-06",
"title": "IBM SDK, Java Technology Edition\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e"
}
FKIE_CVE-2018-1890
Vulnerability from fkie_nvd - Published: 2019-03-11 22:29 - Updated: 2024-11-21 04:00
Severity
5.6 (Medium) - CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:L
7.8 (High) - CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.8 (High) - CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
IBM SDK, Java Technology Edition Version 8 on the AIX platform uses absolute RPATHs which may facilitate code injection and privilege elevation by local users. IBM X-Force ID: 152081.
References
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:ibm:sdk:8.0:*:*:*:java_technology:*:*:*",
"matchCriteriaId": "6DEFC54D-3C43-499D-8F5E-75A02E5A1DF2",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "IBM SDK, Java Technology Edition Version 8 on the AIX platform uses absolute RPATHs which may facilitate code injection and privilege elevation by local users. IBM X-Force ID: 152081."
},
{
"lang": "es",
"value": "IBM SDK, Java Technology Edition, en su versi\u00f3n 8 en la plataforma AIX, utiliza RPATHS absolutas, lo que podr\u00eda facilitar una inyecci\u00f3n de c\u00f3digo y un escalado de privilegios por usuarios locales. IBM X-Force ID: 152081."
}
],
"id": "CVE-2018-1890",
"lastModified": "2024-11-21T04:00:32.843",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.6,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 3.9,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV30": [
{
"cvssData": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:L",
"version": "3.0"
},
"exploitabilityScore": 1.4,
"impactScore": 3.7,
"source": "psirt@us.ibm.com",
"type": "Secondary"
},
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2019-03-11T22:29:00.343",
"references": [
{
"source": "psirt@us.ibm.com",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/107448"
},
{
"source": "psirt@us.ibm.com",
"tags": [
"VDB Entry",
"Vendor Advisory"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/152081"
},
{
"source": "psirt@us.ibm.com",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "https://www.ibm.com/support/docview.wss?uid=ibm10873042"
},
{
"source": "psirt@us.ibm.com",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "https://www.ibm.com/support/docview.wss?uid=ibm10873332"
},
{
"source": "psirt@us.ibm.com",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "https://www.ibm.com/support/docview.wss?uid=ibm10874750"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/107448"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"VDB Entry",
"Vendor Advisory"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/152081"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "https://www.ibm.com/support/docview.wss?uid=ibm10873042"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "https://www.ibm.com/support/docview.wss?uid=ibm10873332"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "https://www.ibm.com/support/docview.wss?uid=ibm10874750"
}
],
"sourceIdentifier": "psirt@us.ibm.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-427"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
GHSA-QWWQ-984W-2342
Vulnerability from github – Published: 2022-05-13 01:32 – Updated: 2022-05-13 01:32
VLAI
Details
IBM SDK, Java Technology Edition Version 8 on the AIX platform uses absolute RPATHs which may facilitate code injection and privilege elevation by local users. IBM X-Force ID: 152081.
Severity
7.8 (High)
{
"affected": [],
"aliases": [
"CVE-2018-1890"
],
"database_specific": {
"cwe_ids": [
"CWE-427"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2019-03-11T22:29:00Z",
"severity": "HIGH"
},
"details": "IBM SDK, Java Technology Edition Version 8 on the AIX platform uses absolute RPATHs which may facilitate code injection and privilege elevation by local users. IBM X-Force ID: 152081.",
"id": "GHSA-qwwq-984w-2342",
"modified": "2022-05-13T01:32:32Z",
"published": "2022-05-13T01:32:32Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1890"
},
{
"type": "WEB",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/152081"
},
{
"type": "WEB",
"url": "https://www.ibm.com/support/docview.wss?uid=ibm10873042"
},
{
"type": "WEB",
"url": "https://www.ibm.com/support/docview.wss?uid=ibm10873332"
},
{
"type": "WEB",
"url": "https://www.ibm.com/support/docview.wss?uid=ibm10874750"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/bid/107448"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
}
]
}
GSD-2018-1890
Vulnerability from gsd - Updated: 2023-12-13 01:22Details
IBM SDK, Java Technology Edition Version 8 on the AIX platform uses absolute RPATHs which may facilitate code injection and privilege elevation by local users. IBM X-Force ID: 152081.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2018-1890",
"description": "IBM SDK, Java Technology Edition Version 8 on the AIX platform uses absolute RPATHs which may facilitate code injection and privilege elevation by local users. IBM X-Force ID: 152081.",
"id": "GSD-2018-1890",
"references": [
"https://www.suse.com/security/cve/CVE-2018-1890.html"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2018-1890"
],
"details": "IBM SDK, Java Technology Edition Version 8 on the AIX platform uses absolute RPATHs which may facilitate code injection and privilege elevation by local users. IBM X-Force ID: 152081.",
"id": "GSD-2018-1890",
"modified": "2023-12-13T01:22:37.187098Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "psirt@us.ibm.com",
"DATE_PUBLIC": "2019-03-01T00:00:00",
"ID": "CVE-2018-1890",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "WebSphere Application Server Patterns",
"version": {
"version_data": [
{
"version_value": "1.0.0.0"
},
{
"version_value": "1.0.0.7"
},
{
"version_value": "2.2.0.0"
},
{
"version_value": "2.2.5.3"
}
]
}
},
{
"product_name": "WebSphere Application Server",
"version": {
"version_data": [
{
"version_value": "7.0"
},
{
"version_value": "8.0"
},
{
"version_value": "8.5"
},
{
"version_value": "9.0"
},
{
"version_value": "Liberty"
}
]
}
},
{
"product_name": "Runtimes for Java Technology",
"version": {
"version_data": [
{
"version_value": " "
}
]
}
}
]
},
"vendor_name": "IBM"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "IBM SDK, Java Technology Edition Version 8 on the AIX platform uses absolute RPATHs which may facilitate code injection and privilege elevation by local users. IBM X-Force ID: 152081."
}
]
},
"impact": {
"cvssv3": {
"BM": {
"A": "L",
"AC": "H",
"AV": "L",
"C": "L",
"I": "L",
"PR": "N",
"S": "C",
"SCORE": "5.600",
"UI": "N"
},
"TM": {
"E": "U",
"RC": "C",
"RL": "O"
}
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Gain Privileges"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "ibm-sdk-cve20181890-code-exec(152081)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/152081"
},
{
"name": "https://www.ibm.com/support/docview.wss?uid=ibm10873042",
"refsource": "CONFIRM",
"url": "https://www.ibm.com/support/docview.wss?uid=ibm10873042"
},
{
"name": "https://www.ibm.com/support/docview.wss?uid=ibm10873332",
"refsource": "CONFIRM",
"url": "https://www.ibm.com/support/docview.wss?uid=ibm10873332"
},
{
"name": "https://www.ibm.com/support/docview.wss?uid=ibm10874750",
"refsource": "CONFIRM",
"url": "https://www.ibm.com/support/docview.wss?uid=ibm10874750"
},
{
"name": "107448",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/107448"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:ibm:sdk:8.0:*:*:*:java_technology:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "psirt@us.ibm.com",
"ID": "CVE-2018-1890"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "IBM SDK, Java Technology Edition Version 8 on the AIX platform uses absolute RPATHs which may facilitate code injection and privilege elevation by local users. IBM X-Force ID: 152081."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-427"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.ibm.com/support/docview.wss?uid=ibm10874750",
"refsource": "CONFIRM",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "https://www.ibm.com/support/docview.wss?uid=ibm10874750"
},
{
"name": "https://www.ibm.com/support/docview.wss?uid=ibm10873332",
"refsource": "CONFIRM",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "https://www.ibm.com/support/docview.wss?uid=ibm10873332"
},
{
"name": "https://www.ibm.com/support/docview.wss?uid=ibm10873042",
"refsource": "CONFIRM",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "https://www.ibm.com/support/docview.wss?uid=ibm10873042"
},
{
"name": "ibm-sdk-cve20181890-code-exec(152081)",
"refsource": "XF",
"tags": [
"VDB Entry",
"Vendor Advisory"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/152081"
},
{
"name": "107448",
"refsource": "BID",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/107448"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": false,
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.6,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 3.9,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9
}
},
"lastModifiedDate": "2019-10-09T23:39Z",
"publishedDate": "2019-03-11T22:29Z"
}
}
}
SUSE-SU-2019:0585-1
Vulnerability from csaf_suse - Published: 2019-03-12 11:59 - Updated: 2019-03-12 11:59Summary
Security update for java-1_8_0-ibm
Severity
Important
Notes
Title of the patch: Security update for java-1_8_0-ibm
Description of the patch: This update for java-1_8_0-ibm to version 8.0.5.30 fixes the following issues:
Security issues fixed:
- CVE-2019-2422: Fixed a memory disclosure in FileChannelImpl (bsc#1122293).
- CVE-2018-11212: Fixed an issue in alloc_sarray function in jmemmgr.c (bsc#1122299).
- CVE-2018-1890: Fixed a local privilege escalation via RPATHs (bsc#1128158).
- CVE-2019-2449: Fixed a vulnerabilit which could allow remote atackers to delete arbitrary files (bsc#1122292).
More information: https://www-01.ibm.com/support/docview.wss?uid=ibm10873332
Patchnames: SUSE-2019-585,SUSE-SLE-Module-Legacy-15-2019-585
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
Affected products
Recommended
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-alsa-1.8.0_sr5.30-3.16.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-plugin-1.8.0_sr5.30-3.16.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
low
5.6 (Medium)
Affected products
Recommended
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-alsa-1.8.0_sr5.30-3.16.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-plugin-1.8.0_sr5.30-3.16.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-alsa-1.8.0_sr5.30-3.16.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-plugin-1.8.0_sr5.30-3.16.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-alsa-1.8.0_sr5.30-3.16.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-plugin-1.8.0_sr5.30-3.16.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
21 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for java-1_8_0-ibm",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for java-1_8_0-ibm to version 8.0.5.30 fixes the following issues:\n\nSecurity issues fixed: \t \n\n- CVE-2019-2422: Fixed a memory disclosure in FileChannelImpl (bsc#1122293).\n- CVE-2018-11212: Fixed an issue in alloc_sarray function in jmemmgr.c (bsc#1122299).\n- CVE-2018-1890: Fixed a local privilege escalation via RPATHs (bsc#1128158).\n- CVE-2019-2449: Fixed a vulnerabilit which could allow remote atackers to delete arbitrary files (bsc#1122292). \n\nMore information: https://www-01.ibm.com/support/docview.wss?uid=ibm10873332\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2019-585,SUSE-SLE-Module-Legacy-15-2019-585",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2019_0585-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2019:0585-1",
"url": "https://www.suse.com/support/update/announcement/2019/suse-su-20190585-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2019:0585-1",
"url": "https://www.suse.com/support/update/announcement/2019/suse-su-20190585-1.html"
},
{
"category": "self",
"summary": "SUSE Bug 1122292",
"url": "https://bugzilla.suse.com/1122292"
},
{
"category": "self",
"summary": "SUSE Bug 1122293",
"url": "https://bugzilla.suse.com/1122293"
},
{
"category": "self",
"summary": "SUSE Bug 1122299",
"url": "https://bugzilla.suse.com/1122299"
},
{
"category": "self",
"summary": "SUSE Bug 1128158",
"url": "https://bugzilla.suse.com/1128158"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-11212 page",
"url": "https://www.suse.com/security/cve/CVE-2018-11212/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-1890 page",
"url": "https://www.suse.com/security/cve/CVE-2018-1890/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-2422 page",
"url": "https://www.suse.com/security/cve/CVE-2019-2422/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-2449 page",
"url": "https://www.suse.com/security/cve/CVE-2019-2449/"
}
],
"title": "Security update for java-1_8_0-ibm",
"tracking": {
"current_release_date": "2019-03-12T11:59:13Z",
"generator": {
"date": "2019-03-12T11:59:13Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2019:0585-1",
"initial_release_date": "2019-03-12T11:59:13Z",
"revision_history": [
{
"date": "2019-03-12T11:59:13Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.i586",
"product": {
"name": "java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.i586",
"product_id": "java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.i586"
}
},
{
"category": "product_version",
"name": "java-1_8_0-ibm-alsa-1.8.0_sr5.30-3.16.2.i586",
"product": {
"name": "java-1_8_0-ibm-alsa-1.8.0_sr5.30-3.16.2.i586",
"product_id": "java-1_8_0-ibm-alsa-1.8.0_sr5.30-3.16.2.i586"
}
},
{
"category": "product_version",
"name": "java-1_8_0-ibm-demo-1.8.0_sr5.30-3.16.2.i586",
"product": {
"name": "java-1_8_0-ibm-demo-1.8.0_sr5.30-3.16.2.i586",
"product_id": "java-1_8_0-ibm-demo-1.8.0_sr5.30-3.16.2.i586"
}
},
{
"category": "product_version",
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.i586",
"product": {
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.i586",
"product_id": "java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.i586"
}
},
{
"category": "product_version",
"name": "java-1_8_0-ibm-plugin-1.8.0_sr5.30-3.16.2.i586",
"product": {
"name": "java-1_8_0-ibm-plugin-1.8.0_sr5.30-3.16.2.i586",
"product_id": "java-1_8_0-ibm-plugin-1.8.0_sr5.30-3.16.2.i586"
}
},
{
"category": "product_version",
"name": "java-1_8_0-ibm-src-1.8.0_sr5.30-3.16.2.i586",
"product": {
"name": "java-1_8_0-ibm-src-1.8.0_sr5.30-3.16.2.i586",
"product_id": "java-1_8_0-ibm-src-1.8.0_sr5.30-3.16.2.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.ppc64le",
"product": {
"name": "java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.ppc64le",
"product_id": "java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.ppc64le"
}
},
{
"category": "product_version",
"name": "java-1_8_0-ibm-demo-1.8.0_sr5.30-3.16.2.ppc64le",
"product": {
"name": "java-1_8_0-ibm-demo-1.8.0_sr5.30-3.16.2.ppc64le",
"product_id": "java-1_8_0-ibm-demo-1.8.0_sr5.30-3.16.2.ppc64le"
}
},
{
"category": "product_version",
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.ppc64le",
"product": {
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.ppc64le",
"product_id": "java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.ppc64le"
}
},
{
"category": "product_version",
"name": "java-1_8_0-ibm-src-1.8.0_sr5.30-3.16.2.ppc64le",
"product": {
"name": "java-1_8_0-ibm-src-1.8.0_sr5.30-3.16.2.ppc64le",
"product_id": "java-1_8_0-ibm-src-1.8.0_sr5.30-3.16.2.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.s390x",
"product": {
"name": "java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.s390x",
"product_id": "java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.s390x"
}
},
{
"category": "product_version",
"name": "java-1_8_0-ibm-demo-1.8.0_sr5.30-3.16.2.s390x",
"product": {
"name": "java-1_8_0-ibm-demo-1.8.0_sr5.30-3.16.2.s390x",
"product_id": "java-1_8_0-ibm-demo-1.8.0_sr5.30-3.16.2.s390x"
}
},
{
"category": "product_version",
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.s390x",
"product": {
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.s390x",
"product_id": "java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.s390x"
}
},
{
"category": "product_version",
"name": "java-1_8_0-ibm-src-1.8.0_sr5.30-3.16.2.s390x",
"product": {
"name": "java-1_8_0-ibm-src-1.8.0_sr5.30-3.16.2.s390x",
"product_id": "java-1_8_0-ibm-src-1.8.0_sr5.30-3.16.2.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.x86_64",
"product": {
"name": "java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.x86_64",
"product_id": "java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.x86_64"
}
},
{
"category": "product_version",
"name": "java-1_8_0-ibm-32bit-1.8.0_sr5.30-3.16.2.x86_64",
"product": {
"name": "java-1_8_0-ibm-32bit-1.8.0_sr5.30-3.16.2.x86_64",
"product_id": "java-1_8_0-ibm-32bit-1.8.0_sr5.30-3.16.2.x86_64"
}
},
{
"category": "product_version",
"name": "java-1_8_0-ibm-alsa-1.8.0_sr5.30-3.16.2.x86_64",
"product": {
"name": "java-1_8_0-ibm-alsa-1.8.0_sr5.30-3.16.2.x86_64",
"product_id": "java-1_8_0-ibm-alsa-1.8.0_sr5.30-3.16.2.x86_64"
}
},
{
"category": "product_version",
"name": "java-1_8_0-ibm-demo-1.8.0_sr5.30-3.16.2.x86_64",
"product": {
"name": "java-1_8_0-ibm-demo-1.8.0_sr5.30-3.16.2.x86_64",
"product_id": "java-1_8_0-ibm-demo-1.8.0_sr5.30-3.16.2.x86_64"
}
},
{
"category": "product_version",
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.x86_64",
"product": {
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.x86_64",
"product_id": "java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.x86_64"
}
},
{
"category": "product_version",
"name": "java-1_8_0-ibm-devel-32bit-1.8.0_sr5.30-3.16.2.x86_64",
"product": {
"name": "java-1_8_0-ibm-devel-32bit-1.8.0_sr5.30-3.16.2.x86_64",
"product_id": "java-1_8_0-ibm-devel-32bit-1.8.0_sr5.30-3.16.2.x86_64"
}
},
{
"category": "product_version",
"name": "java-1_8_0-ibm-plugin-1.8.0_sr5.30-3.16.2.x86_64",
"product": {
"name": "java-1_8_0-ibm-plugin-1.8.0_sr5.30-3.16.2.x86_64",
"product_id": "java-1_8_0-ibm-plugin-1.8.0_sr5.30-3.16.2.x86_64"
}
},
{
"category": "product_version",
"name": "java-1_8_0-ibm-src-1.8.0_sr5.30-3.16.2.x86_64",
"product": {
"name": "java-1_8_0-ibm-src-1.8.0_sr5.30-3.16.2.x86_64",
"product_id": "java-1_8_0-ibm-src-1.8.0_sr5.30-3.16.2.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Legacy 15",
"product": {
"name": "SUSE Linux Enterprise Module for Legacy 15",
"product_id": "SUSE Linux Enterprise Module for Legacy 15",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-legacy:15"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.ppc64le as component of SUSE Linux Enterprise Module for Legacy 15",
"product_id": "SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.ppc64le"
},
"product_reference": "java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Legacy 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.s390x as component of SUSE Linux Enterprise Module for Legacy 15",
"product_id": "SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.s390x"
},
"product_reference": "java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Legacy 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.x86_64 as component of SUSE Linux Enterprise Module for Legacy 15",
"product_id": "SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.x86_64"
},
"product_reference": "java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Legacy 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-alsa-1.8.0_sr5.30-3.16.2.x86_64 as component of SUSE Linux Enterprise Module for Legacy 15",
"product_id": "SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-alsa-1.8.0_sr5.30-3.16.2.x86_64"
},
"product_reference": "java-1_8_0-ibm-alsa-1.8.0_sr5.30-3.16.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Legacy 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.ppc64le as component of SUSE Linux Enterprise Module for Legacy 15",
"product_id": "SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.ppc64le"
},
"product_reference": "java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Legacy 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.s390x as component of SUSE Linux Enterprise Module for Legacy 15",
"product_id": "SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.s390x"
},
"product_reference": "java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Legacy 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.x86_64 as component of SUSE Linux Enterprise Module for Legacy 15",
"product_id": "SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.x86_64"
},
"product_reference": "java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Legacy 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-plugin-1.8.0_sr5.30-3.16.2.x86_64 as component of SUSE Linux Enterprise Module for Legacy 15",
"product_id": "SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-plugin-1.8.0_sr5.30-3.16.2.x86_64"
},
"product_reference": "java-1_8_0-ibm-plugin-1.8.0_sr5.30-3.16.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Legacy 15"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2018-11212",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-11212"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in libjpeg 9a and 9d. The alloc_sarray function in jmemmgr.c allows remote attackers to cause a denial of service (divide-by-zero error) via a crafted file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.s390x",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-alsa-1.8.0_sr5.30-3.16.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.s390x",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-plugin-1.8.0_sr5.30-3.16.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-11212",
"url": "https://www.suse.com/security/cve/CVE-2018-11212"
},
{
"category": "external",
"summary": "SUSE Bug 1122299 for CVE-2018-11212",
"url": "https://bugzilla.suse.com/1122299"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.s390x",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-alsa-1.8.0_sr5.30-3.16.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.s390x",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-plugin-1.8.0_sr5.30-3.16.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.s390x",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-alsa-1.8.0_sr5.30-3.16.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.s390x",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-plugin-1.8.0_sr5.30-3.16.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-03-12T11:59:13Z",
"details": "low"
}
],
"title": "CVE-2018-11212"
},
{
"cve": "CVE-2018-1890",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-1890"
}
],
"notes": [
{
"category": "general",
"text": "IBM SDK, Java Technology Edition Version 8 on the AIX platform uses absolute RPATHs which may facilitate code injection and privilege elevation by local users. IBM X-Force ID: 152081.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.s390x",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-alsa-1.8.0_sr5.30-3.16.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.s390x",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-plugin-1.8.0_sr5.30-3.16.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-1890",
"url": "https://www.suse.com/security/cve/CVE-2018-1890"
},
{
"category": "external",
"summary": "SUSE Bug 1128158 for CVE-2018-1890",
"url": "https://bugzilla.suse.com/1128158"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.s390x",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-alsa-1.8.0_sr5.30-3.16.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.s390x",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-plugin-1.8.0_sr5.30-3.16.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.s390x",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-alsa-1.8.0_sr5.30-3.16.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.s390x",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-plugin-1.8.0_sr5.30-3.16.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-03-12T11:59:13Z",
"details": "moderate"
}
],
"title": "CVE-2018-1890"
},
{
"cve": "CVE-2019-2422",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-2422"
}
],
"notes": [
{
"category": "general",
"text": "Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 7u201, 8u192 and 11.0.1; Java SE Embedded: 8u191. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets (in Java SE 8), that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 3.1 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.s390x",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-alsa-1.8.0_sr5.30-3.16.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.s390x",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-plugin-1.8.0_sr5.30-3.16.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-2422",
"url": "https://www.suse.com/security/cve/CVE-2019-2422"
},
{
"category": "external",
"summary": "SUSE Bug 1122293 for CVE-2019-2422",
"url": "https://bugzilla.suse.com/1122293"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.s390x",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-alsa-1.8.0_sr5.30-3.16.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.s390x",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-plugin-1.8.0_sr5.30-3.16.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.1,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.s390x",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-alsa-1.8.0_sr5.30-3.16.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.s390x",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-plugin-1.8.0_sr5.30-3.16.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-03-12T11:59:13Z",
"details": "moderate"
}
],
"title": "CVE-2019-2422"
},
{
"cve": "CVE-2019-2449",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-2449"
}
],
"notes": [
{
"category": "general",
"text": "Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). The supported version that is affected is Java SE: 8u192. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets (in Java SE 8), that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 3.1 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.s390x",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-alsa-1.8.0_sr5.30-3.16.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.s390x",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-plugin-1.8.0_sr5.30-3.16.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-2449",
"url": "https://www.suse.com/security/cve/CVE-2019-2449"
},
{
"category": "external",
"summary": "SUSE Bug 1122292 for CVE-2019-2449",
"url": "https://bugzilla.suse.com/1122292"
},
{
"category": "external",
"summary": "SUSE Bug 1132734 for CVE-2019-2449",
"url": "https://bugzilla.suse.com/1132734"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.s390x",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-alsa-1.8.0_sr5.30-3.16.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.s390x",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-plugin-1.8.0_sr5.30-3.16.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.1,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.s390x",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-1.8.0_sr5.30-3.16.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-alsa-1.8.0_sr5.30-3.16.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.s390x",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-devel-1.8.0_sr5.30-3.16.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:java-1_8_0-ibm-plugin-1.8.0_sr5.30-3.16.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-03-12T11:59:13Z",
"details": "moderate"
}
],
"title": "CVE-2019-2449"
}
]
}
SUSE-SU-2019:0617-1
Vulnerability from csaf_suse - Published: 2019-03-15 12:14 - Updated: 2019-03-15 12:14Summary
Security update for java-1_8_0-ibm
Severity
Important
Notes
Title of the patch: Security update for java-1_8_0-ibm
Description of the patch: This update for java-1_8_0-ibm to version 8.0.5.30 fixes the following issues:
Security issues fixed:
- CVE-2019-2422: Fixed a memory disclosure in FileChannelImpl (bsc#1122293).
- CVE-2018-11212: Fixed an issue in alloc_sarray function in jmemmgr.c (bsc#1122299).
- CVE-2018-1890: Fixed a local privilege escalation via RPATHs (bsc#1128158).
- CVE-2019-2449: Fixed a vulnerabilit which could allow remote atackers to delete arbitrary files (bsc#1122292).
More information: https://www-01.ibm.com/support/docview.wss?uid=ibm10873332
Patchnames: SUSE-2019-617,SUSE-OpenStack-Cloud-7-2019-617,SUSE-SLE-SAP-12-SP1-2019-617,SUSE-SLE-SAP-12-SP2-2019-617,SUSE-SLE-SDK-12-SP3-2019-617,SUSE-SLE-SDK-12-SP4-2019-617,SUSE-SLE-SERVER-12-SP1-2019-617,SUSE-SLE-SERVER-12-SP2-2019-617,SUSE-SLE-SERVER-12-SP2-BCL-2019-617,SUSE-SLE-SERVER-12-SP3-2019-617,SUSE-SLE-SERVER-12-SP4-2019-617,SUSE-Storage-4-2019-617
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
Affected products
Recommended
66 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Enterprise Storage 4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
low
5.6 (Medium)
Affected products
Recommended
66 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Enterprise Storage 4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
66 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Enterprise Storage 4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
66 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Enterprise Storage 4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
21 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for java-1_8_0-ibm",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for java-1_8_0-ibm to version 8.0.5.30 fixes the following issues:\n\nSecurity issues fixed:\n\n- CVE-2019-2422: Fixed a memory disclosure in FileChannelImpl (bsc#1122293).\n- CVE-2018-11212: Fixed an issue in alloc_sarray function in jmemmgr.c (bsc#1122299).\n- CVE-2018-1890: Fixed a local privilege escalation via RPATHs (bsc#1128158).\n- CVE-2019-2449: Fixed a vulnerabilit which could allow remote atackers to delete arbitrary files (bsc#1122292). \n\nMore information: https://www-01.ibm.com/support/docview.wss?uid=ibm10873332\t \n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2019-617,SUSE-OpenStack-Cloud-7-2019-617,SUSE-SLE-SAP-12-SP1-2019-617,SUSE-SLE-SAP-12-SP2-2019-617,SUSE-SLE-SDK-12-SP3-2019-617,SUSE-SLE-SDK-12-SP4-2019-617,SUSE-SLE-SERVER-12-SP1-2019-617,SUSE-SLE-SERVER-12-SP2-2019-617,SUSE-SLE-SERVER-12-SP2-BCL-2019-617,SUSE-SLE-SERVER-12-SP3-2019-617,SUSE-SLE-SERVER-12-SP4-2019-617,SUSE-Storage-4-2019-617",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2019_0617-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2019:0617-1",
"url": "https://www.suse.com/support/update/announcement/2019/suse-su-20190617-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2019:0617-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2019-March/005195.html"
},
{
"category": "self",
"summary": "SUSE Bug 1122292",
"url": "https://bugzilla.suse.com/1122292"
},
{
"category": "self",
"summary": "SUSE Bug 1122293",
"url": "https://bugzilla.suse.com/1122293"
},
{
"category": "self",
"summary": "SUSE Bug 1122299",
"url": "https://bugzilla.suse.com/1122299"
},
{
"category": "self",
"summary": "SUSE Bug 1128158",
"url": "https://bugzilla.suse.com/1128158"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-11212 page",
"url": "https://www.suse.com/security/cve/CVE-2018-11212/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-1890 page",
"url": "https://www.suse.com/security/cve/CVE-2018-1890/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-2422 page",
"url": "https://www.suse.com/security/cve/CVE-2019-2422/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-2449 page",
"url": "https://www.suse.com/security/cve/CVE-2019-2449/"
}
],
"title": "Security update for java-1_8_0-ibm",
"tracking": {
"current_release_date": "2019-03-15T12:14:42Z",
"generator": {
"date": "2019-03-15T12:14:42Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2019:0617-1",
"initial_release_date": "2019-03-15T12:14:42Z",
"revision_history": [
{
"date": "2019-03-15T12:14:42Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.i586",
"product": {
"name": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.i586",
"product_id": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.i586"
}
},
{
"category": "product_version",
"name": "java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.i586",
"product": {
"name": "java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.i586",
"product_id": "java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.i586"
}
},
{
"category": "product_version",
"name": "java-1_8_0-ibm-demo-1.8.0_sr5.30-30.46.1.i586",
"product": {
"name": "java-1_8_0-ibm-demo-1.8.0_sr5.30-30.46.1.i586",
"product_id": "java-1_8_0-ibm-demo-1.8.0_sr5.30-30.46.1.i586"
}
},
{
"category": "product_version",
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.i586",
"product": {
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.i586",
"product_id": "java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.i586"
}
},
{
"category": "product_version",
"name": "java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.i586",
"product": {
"name": "java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.i586",
"product_id": "java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.i586"
}
},
{
"category": "product_version",
"name": "java-1_8_0-ibm-src-1.8.0_sr5.30-30.46.1.i586",
"product": {
"name": "java-1_8_0-ibm-src-1.8.0_sr5.30-30.46.1.i586",
"product_id": "java-1_8_0-ibm-src-1.8.0_sr5.30-30.46.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"product": {
"name": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"product_id": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le"
}
},
{
"category": "product_version",
"name": "java-1_8_0-ibm-demo-1.8.0_sr5.30-30.46.1.ppc64le",
"product": {
"name": "java-1_8_0-ibm-demo-1.8.0_sr5.30-30.46.1.ppc64le",
"product_id": "java-1_8_0-ibm-demo-1.8.0_sr5.30-30.46.1.ppc64le"
}
},
{
"category": "product_version",
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"product": {
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"product_id": "java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le"
}
},
{
"category": "product_version",
"name": "java-1_8_0-ibm-src-1.8.0_sr5.30-30.46.1.ppc64le",
"product": {
"name": "java-1_8_0-ibm-src-1.8.0_sr5.30-30.46.1.ppc64le",
"product_id": "java-1_8_0-ibm-src-1.8.0_sr5.30-30.46.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390",
"product": {
"name": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390",
"product_id": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390"
}
},
{
"category": "product_version",
"name": "java-1_8_0-ibm-demo-1.8.0_sr5.30-30.46.1.s390",
"product": {
"name": "java-1_8_0-ibm-demo-1.8.0_sr5.30-30.46.1.s390",
"product_id": "java-1_8_0-ibm-demo-1.8.0_sr5.30-30.46.1.s390"
}
},
{
"category": "product_version",
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390",
"product": {
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390",
"product_id": "java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390"
}
},
{
"category": "product_version",
"name": "java-1_8_0-ibm-src-1.8.0_sr5.30-30.46.1.s390",
"product": {
"name": "java-1_8_0-ibm-src-1.8.0_sr5.30-30.46.1.s390",
"product_id": "java-1_8_0-ibm-src-1.8.0_sr5.30-30.46.1.s390"
}
}
],
"category": "architecture",
"name": "s390"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"product": {
"name": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"product_id": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x"
}
},
{
"category": "product_version",
"name": "java-1_8_0-ibm-32bit-1.8.0_sr5.30-30.46.1.s390x",
"product": {
"name": "java-1_8_0-ibm-32bit-1.8.0_sr5.30-30.46.1.s390x",
"product_id": "java-1_8_0-ibm-32bit-1.8.0_sr5.30-30.46.1.s390x"
}
},
{
"category": "product_version",
"name": "java-1_8_0-ibm-demo-1.8.0_sr5.30-30.46.1.s390x",
"product": {
"name": "java-1_8_0-ibm-demo-1.8.0_sr5.30-30.46.1.s390x",
"product_id": "java-1_8_0-ibm-demo-1.8.0_sr5.30-30.46.1.s390x"
}
},
{
"category": "product_version",
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"product": {
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"product_id": "java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x"
}
},
{
"category": "product_version",
"name": "java-1_8_0-ibm-devel-32bit-1.8.0_sr5.30-30.46.1.s390x",
"product": {
"name": "java-1_8_0-ibm-devel-32bit-1.8.0_sr5.30-30.46.1.s390x",
"product_id": "java-1_8_0-ibm-devel-32bit-1.8.0_sr5.30-30.46.1.s390x"
}
},
{
"category": "product_version",
"name": "java-1_8_0-ibm-src-1.8.0_sr5.30-30.46.1.s390x",
"product": {
"name": "java-1_8_0-ibm-src-1.8.0_sr5.30-30.46.1.s390x",
"product_id": "java-1_8_0-ibm-src-1.8.0_sr5.30-30.46.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"product": {
"name": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"product_id": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64"
}
},
{
"category": "product_version",
"name": "java-1_8_0-ibm-32bit-1.8.0_sr5.30-30.46.1.x86_64",
"product": {
"name": "java-1_8_0-ibm-32bit-1.8.0_sr5.30-30.46.1.x86_64",
"product_id": "java-1_8_0-ibm-32bit-1.8.0_sr5.30-30.46.1.x86_64"
}
},
{
"category": "product_version",
"name": "java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"product": {
"name": "java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"product_id": "java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64"
}
},
{
"category": "product_version",
"name": "java-1_8_0-ibm-demo-1.8.0_sr5.30-30.46.1.x86_64",
"product": {
"name": "java-1_8_0-ibm-demo-1.8.0_sr5.30-30.46.1.x86_64",
"product_id": "java-1_8_0-ibm-demo-1.8.0_sr5.30-30.46.1.x86_64"
}
},
{
"category": "product_version",
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"product": {
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"product_id": "java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64"
}
},
{
"category": "product_version",
"name": "java-1_8_0-ibm-devel-32bit-1.8.0_sr5.30-30.46.1.x86_64",
"product": {
"name": "java-1_8_0-ibm-devel-32bit-1.8.0_sr5.30-30.46.1.x86_64",
"product_id": "java-1_8_0-ibm-devel-32bit-1.8.0_sr5.30-30.46.1.x86_64"
}
},
{
"category": "product_version",
"name": "java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"product": {
"name": "java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"product_id": "java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64"
}
},
{
"category": "product_version",
"name": "java-1_8_0-ibm-src-1.8.0_sr5.30-30.46.1.x86_64",
"product": {
"name": "java-1_8_0-ibm-src-1.8.0_sr5.30-30.46.1.x86_64",
"product_id": "java-1_8_0-ibm-src-1.8.0_sr5.30-30.46.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE OpenStack Cloud 7",
"product": {
"name": "SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-openstack-cloud:7"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Software Development Kit 12 SP3",
"product": {
"name": "SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-sdk:12:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Software Development Kit 12 SP4",
"product": {
"name": "SUSE Linux Enterprise Software Development Kit 12 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-sdk:12:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP1-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:12:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP2-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:12:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP2-BCL",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-bcl:12:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP3",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:12:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP4",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP4",
"product_id": "SUSE Linux Enterprise Server 12 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:12:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Enterprise Storage 4",
"product": {
"name": "SUSE Enterprise Storage 4",
"product_id": "SUSE Enterprise Storage 4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:ses:4"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x"
},
"product_reference": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x"
},
"product_reference": "java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64 as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le"
},
"product_reference": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le"
},
"product_reference": "java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le"
},
"product_reference": "java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x"
},
"product_reference": "java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le"
},
"product_reference": "java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x"
},
"product_reference": "java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le"
},
"product_reference": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x"
},
"product_reference": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le"
},
"product_reference": "java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x"
},
"product_reference": "java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le"
},
"product_reference": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x"
},
"product_reference": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le"
},
"product_reference": "java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x"
},
"product_reference": "java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le"
},
"product_reference": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x"
},
"product_reference": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le"
},
"product_reference": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x"
},
"product_reference": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP4",
"product_id": "SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le"
},
"product_reference": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x as component of SUSE Linux Enterprise Server 12 SP4",
"product_id": "SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x"
},
"product_reference": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP4",
"product_id": "SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP4",
"product_id": "SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP4",
"product_id": "SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le"
},
"product_reference": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x"
},
"product_reference": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64 as component of SUSE Enterprise Storage 4",
"product_id": "SUSE Enterprise Storage 4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64 as component of SUSE Enterprise Storage 4",
"product_id": "SUSE Enterprise Storage 4:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64 as component of SUSE Enterprise Storage 4",
"product_id": "SUSE Enterprise Storage 4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64 as component of SUSE Enterprise Storage 4",
"product_id": "SUSE Enterprise Storage 4:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64"
},
"product_reference": "java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 4"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2018-11212",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-11212"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in libjpeg 9a and 9d. The alloc_sarray function in jmemmgr.c allows remote attackers to cause a denial of service (divide-by-zero error) via a crafted file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Enterprise Storage 4:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Enterprise Storage 4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Enterprise Storage 4:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-11212",
"url": "https://www.suse.com/security/cve/CVE-2018-11212"
},
{
"category": "external",
"summary": "SUSE Bug 1122299 for CVE-2018-11212",
"url": "https://bugzilla.suse.com/1122299"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Enterprise Storage 4:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Enterprise Storage 4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Enterprise Storage 4:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Enterprise Storage 4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Enterprise Storage 4:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Enterprise Storage 4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Enterprise Storage 4:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-03-15T12:14:42Z",
"details": "low"
}
],
"title": "CVE-2018-11212"
},
{
"cve": "CVE-2018-1890",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-1890"
}
],
"notes": [
{
"category": "general",
"text": "IBM SDK, Java Technology Edition Version 8 on the AIX platform uses absolute RPATHs which may facilitate code injection and privilege elevation by local users. IBM X-Force ID: 152081.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Enterprise Storage 4:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Enterprise Storage 4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Enterprise Storage 4:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-1890",
"url": "https://www.suse.com/security/cve/CVE-2018-1890"
},
{
"category": "external",
"summary": "SUSE Bug 1128158 for CVE-2018-1890",
"url": "https://bugzilla.suse.com/1128158"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Enterprise Storage 4:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Enterprise Storage 4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Enterprise Storage 4:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"SUSE Enterprise Storage 4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Enterprise Storage 4:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Enterprise Storage 4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Enterprise Storage 4:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-03-15T12:14:42Z",
"details": "moderate"
}
],
"title": "CVE-2018-1890"
},
{
"cve": "CVE-2019-2422",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-2422"
}
],
"notes": [
{
"category": "general",
"text": "Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 7u201, 8u192 and 11.0.1; Java SE Embedded: 8u191. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets (in Java SE 8), that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 3.1 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Enterprise Storage 4:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Enterprise Storage 4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Enterprise Storage 4:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-2422",
"url": "https://www.suse.com/security/cve/CVE-2019-2422"
},
{
"category": "external",
"summary": "SUSE Bug 1122293 for CVE-2019-2422",
"url": "https://bugzilla.suse.com/1122293"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Enterprise Storage 4:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Enterprise Storage 4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Enterprise Storage 4:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.1,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"SUSE Enterprise Storage 4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Enterprise Storage 4:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Enterprise Storage 4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Enterprise Storage 4:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-03-15T12:14:42Z",
"details": "moderate"
}
],
"title": "CVE-2019-2422"
},
{
"cve": "CVE-2019-2449",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-2449"
}
],
"notes": [
{
"category": "general",
"text": "Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). The supported version that is affected is Java SE: 8u192. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets (in Java SE 8), that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 3.1 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Enterprise Storage 4:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Enterprise Storage 4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Enterprise Storage 4:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-2449",
"url": "https://www.suse.com/security/cve/CVE-2019-2449"
},
{
"category": "external",
"summary": "SUSE Bug 1122292 for CVE-2019-2449",
"url": "https://bugzilla.suse.com/1122292"
},
{
"category": "external",
"summary": "SUSE Bug 1132734 for CVE-2019-2449",
"url": "https://bugzilla.suse.com/1132734"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Enterprise Storage 4:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Enterprise Storage 4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Enterprise Storage 4:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.1,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Enterprise Storage 4:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Enterprise Storage 4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Enterprise Storage 4:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.s390x",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.s390x",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46.1.x86_64",
"SUSE OpenStack Cloud 7:java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-03-15T12:14:42Z",
"details": "moderate"
}
],
"title": "CVE-2019-2449"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…